6 matches found
CVE-2024-1250
An issue has been discovered in GitLab EE affecting all versions starting from 16.8 before 16.8.2. When a user is assigned a custom role with managegroupaccesstokens permission, they may be able to create group access tokens with Owner privileges, which may lead to privilege escalation...
CVE-2024-1250 Privilege Chaining in GitLab
An issue has been discovered in GitLab EE affecting all versions starting from 16.8 before 16.8.2. When a user is assigned a custom role with managegroupaccesstokens permission, they may be able to create group access tokens with Owner privileges, which may lead to privilege escalation...
CVE-2024-1250 Privilege Chaining in GitLab
An issue has been discovered in GitLab EE affecting all versions starting from 16.8 before 16.8.2. When a user is assigned a custom role with managegroupaccesstokens permission, they may be able to create group access tokens with Owner privileges, which may lead to privilege escalation...
CVE-2024-1250
CVE-2024-1250 affects GitLab EE versions 16.8 through 16.8.1 (before 16.8.2). Affected component: group access token creation via a custom role with the manage_group_access_tokens permission. Root cause: privilege escalation arises when a user granted this permission can create group access token...
CVE-2024-1250 Privilege Chaining in GitLab
An issue has been discovered in GitLab EE affecting all versions starting from 16.8 before 16.8.2. When a user is assigned a custom role with managegroupaccesstokens permission, they may be able to create group access tokens with Owner privileges, which may lead to privilege escalation...
FreeBSD : Gitlab -- vulnerabilities (6b2cba6a-c6a5-11ee-97d0-001b217b3468)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 6b2cba6a-c6a5-11ee-97d0-001b217b3468 advisory. - An issue has been discovered in GitLab EE affecting all versions from 16.4 prior to 16.6.7,...