3 matches found
CVE-2023-1084
CVE-2023-1084 affects GitLab CE/EE. Affected versions include all before 15.7.8, 15.8 before 15.8.4, and 15.9 before 15.9.2. The issue allows a malicious project Maintainer to create a Project Access Token with Owner level privileges via a crafted request. Primary sources (NVD, OSV, and vendor di...
CVE-2023-1084
Removed by vendor...
GitLab 0.0 < 15.7.8 / 15.8 < 15.8.4 / 15.9 < 15.9.2 (CVE-2023-1084)
The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An issue has been discovered in GitLab CE/EE affecting all versions before 15.7.8, all versions starting from 15.8 before 15.8.4, all versions starting from 15.9 before 15.9.2. A malicious project...