4 matches found
CVE-2024-7586
An issue was discovered in GitLab EE affecting all versions starting from 17.0 prior to 17.0.6, starting from 17.1 prior to 17.1.4, and starting from 17.2 prior to 17.2.2, where webhook deletion audit log preserved auth credentials...
CVE-2024-7586 Insertion of Sensitive Information into Log File in GitLab
An issue was discovered in GitLab EE affecting all versions starting from 17.0 prior to 17.0.6, starting from 17.1 prior to 17.1.4, and starting from 17.2 prior to 17.2.2, where webhook deletion audit log preserved auth credentials...
CVE-2024-7586
GitLab EE vulnerability CVE-2024-7586 affects GitLab EE versions: 17.0 up to but not including 17.0.6, 17.1 up to but not including 17.1.4, and 17.2 up to but not including 17.2.2. The issue is that webhook deletion audit logs can preserve auth credentials. A fix exists in the subsequent release ...
CVE-2024-7586 Insertion of Sensitive Information into Log File in GitLab
An issue was discovered in GitLab EE affecting all versions starting from 17.0 prior to 17.0.6, starting from 17.1 prior to 17.1.4, and starting from 17.2 prior to 17.2.2, where webhook deletion audit log preserved auth credentials...