Lucene search
+L

6 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 2:15 a.m.6 views

CVE-2023-3915

An issue has been discovered in GitLab EE affecting all versions starting from 16.1 before 16.1.5, all versions starting from 16.2 before 16.2.5, all versions starting from 16.3 before 16.3.1. If an external user is given an owner role on any group, that external user may escalate their privilege...

7.2CVSS6.6AI score0.00565EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/09/01 10:1 a.m.18 views

CVE-2023-3915 Incorrect Execution-Assigned Permissions in GitLab

An issue has been discovered in GitLab EE affecting all versions starting from 16.1 before 16.1.5, all versions starting from 16.2 before 16.2.5, all versions starting from 16.3 before 16.3.1. If an external user is given an owner role on any group, that external user may escalate their privilege...

6.5CVSS6.6AI score0.00565EPSS
Exploits0References2
CVE
CVE
added 2023/09/01 10:1 a.m.518 views

CVE-2023-3915

CVE-2023-3915 in GitLab EE/CE: an external user with an owner role on a group could escalate privileges by creating a service account in that group, enabling access to internal projects. Affected releases include GitLab versions: 16.1 before 16.1.5, 16.2 before 16.2.5, and 16.3 before 16.3.1. Fix...

7.2CVSS6.5AI score0.00565EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2023/09/01 10:1 a.m.35 views

CVE-2023-3915 Incorrect Execution-Assigned Permissions in GitLab

An issue has been discovered in GitLab EE affecting all versions starting from 16.1 before 16.1.5, all versions starting from 16.2 before 16.2.5, all versions starting from 16.3 before 16.3.1. If an external user is given an owner role on any group, that external user may escalate their privilege...

6.5CVSS7AI score0.00565EPSS
Exploits0References2
OSV
OSV
added 2023/09/01 10:1 a.m.25 views

CVE-2023-3915 Incorrect Execution-Assigned Permissions in GitLab

An issue has been discovered in GitLab EE affecting all versions starting from 16.1 before 16.1.5, all versions starting from 16.2 before 16.2.5, all versions starting from 16.3 before 16.3.1. If an external user is given an owner role on any group, that external user may escalate their privilege...

6.5CVSS6.8AI score0.00565EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2023/08/31 12:0 a.m.25 views

GitLab 16.1 < 16.1.5 / 16.2 < 16.2.5 / 16.3 < 16.3.1 (CVE-2023-3915)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An issue has been discovered in GitLab EE affecting all versions starting from 16.1 before 16.1.5, all versions starting from 16.2 before 16.2.5, all versions starting from 16.3 before 16.3.1. If an...

7.2CVSS6.9AI score0.00565EPSS
Exploits0References4
Rows per page
Query Builder