Lucene search
+L

6 matches found

ATTACKERKB
ATTACKERKB
added 2024/02/12 9:15 p.m.4 views

CVE-2024-1250

An issue has been discovered in GitLab EE affecting all versions starting from 16.8 before 16.8.2. When a user is assigned a custom role with managegroupaccesstokens permission, they may be able to create group access tokens with Owner privileges, which may lead to privilege escalation...

6.5CVSS5.7AI score0.00549EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2024/02/12 8:47 p.m.4 views

CVE-2024-1250 Privilege Chaining in GitLab

An issue has been discovered in GitLab EE affecting all versions starting from 16.8 before 16.8.2. When a user is assigned a custom role with managegroupaccesstokens permission, they may be able to create group access tokens with Owner privileges, which may lead to privilege escalation...

6.5CVSS6.1AI score0.00549EPSS
Exploits0References1
OSV
OSV
added 2024/02/12 8:47 p.m.17 views

CVE-2024-1250 Privilege Chaining in GitLab

An issue has been discovered in GitLab EE affecting all versions starting from 16.8 before 16.8.2. When a user is assigned a custom role with managegroupaccesstokens permission, they may be able to create group access tokens with Owner privileges, which may lead to privilege escalation...

6.5CVSS6.3AI score0.00549EPSS
Exploits0References4
CVE
CVE
added 2024/02/12 8:47 p.m.168 views

CVE-2024-1250

CVE-2024-1250 affects GitLab EE versions 16.8 through 16.8.1 (before 16.8.2). Affected component: group access token creation via a custom role with the manage_group_access_tokens permission. Root cause: privilege escalation arises when a user granted this permission can create group access token...

6.5CVSS6AI score0.00549EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/02/12 8:47 p.m.32 views

CVE-2024-1250 Privilege Chaining in GitLab

An issue has been discovered in GitLab EE affecting all versions starting from 16.8 before 16.8.2. When a user is assigned a custom role with managegroupaccesstokens permission, they may be able to create group access tokens with Owner privileges, which may lead to privilege escalation...

6.5CVSS6.3AI score0.00549EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/02/09 12:0 a.m.24 views

FreeBSD : Gitlab -- vulnerabilities (6b2cba6a-c6a5-11ee-97d0-001b217b3468)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 6b2cba6a-c6a5-11ee-97d0-001b217b3468 advisory. - An issue has been discovered in GitLab EE affecting all versions from 16.4 prior to 16.6.7,...

7.5CVSS6.4AI score0.00631EPSS
Exploits0References6
Rows per page
Query Builder