3 matches found
CVE-2021-22186
An authorization issue in GitLab CE/EE version 9.4 and up allowed a group maintainer to modify group CI/CD variables which should be restricted to group owners...
GitLab 9.4 < 13.7.8 / 13.8 < 13.8.5 / 13.9 < 13.9.2 (CVE-2021-22186)
The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An authorization issue in GitLab CE/EE version 9.4 and up allowed a group maintainer to modify group CI/CD variables which should be restricted to group owners CVE-2021-22186 Note that Nessus has not...
CVE-2021-22186
CVE-2021-22186 is an authorization issue in GitLab CE/EE, affecting versions 9.4 and later. Affected component: group-level CI/CD variables configuration; root cause described as a permission flaw that allows a group maintainer to modify variables that should be restricted to group owners . Docum...