Lucene search
+L

7 matches found

NVD
NVD
added 2024/11/26 7:15 p.m.29 views

CVE-2024-8114

An issue has been discovered in GitLab CE/EE affecting all versions from 8.12 before 17.4.5, 17.5 before 17.5.3, and 17.6 before 17.6.1. This issue allows an attacker with access to a victim's Personal Access Token PAT to escalate privileges...

8.8CVSS0.00684EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/11/26 6:31 p.m.23 views

CVE-2024-8114 Missing Authorization in GitLab

An issue has been discovered in GitLab CE/EE affecting all versions from 8.12 before 17.4.5, 17.5 before 17.5.3, and 17.6 before 17.6.1. This issue allows an attacker with access to a victim's Personal Access Token PAT to escalate privileges...

8.2CVSS6.8AI score0.00684EPSS
Exploits0References2
CVE
CVE
added 2024/11/26 6:31 p.m.413 views

CVE-2024-8114

CVE-2024-8114 affects GitLab CE/EE versions 8.12 through before 17.4.5, 17.5 before 17.5.3, and 17.6 before 17.6.1. An attacker who has access to a victim’s Personal Access Token (PAT) can escalate privileges. The impact is privilege escalation with high potential impact on confidentiality, integ...

8.8CVSS8.1AI score0.00684EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2024/11/26 6:31 p.m.19 views

CVE-2024-8114

Removed by vendor...

8.8CVSS5.8AI score0.00684EPSS
Exploits0
Cvelist
Cvelist
added 2024/11/26 6:31 p.m.35 views

CVE-2024-8114 Missing Authorization in GitLab

An issue has been discovered in GitLab CE/EE affecting all versions from 8.12 before 17.4.5, 17.5 before 17.5.3, and 17.6 before 17.6.1. This issue allows an attacker with access to a victim's Personal Access Token PAT to escalate privileges...

8.2CVSS0.00684EPSS
Exploits0References2
Circl
Circl
added 2024/11/26 3:33 p.m.6 views

CVE-2024-8114

creationtimestamp| type| source ---|---|--- 2024-11-26 15:33:23+00:00| seen| https://infosec.exchange/users/screaminggoat/statuses/113549980676758562 2024-11-26 18:37:04+00:00| seen| https://infosec.exchange/users/cve/statuses/113550702917565745 2024-11-27 07:56:33+00:00| seen|...

8.8CVSS5.7AI score0.00684EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/11/26 12:0 a.m.10 views

GitLab 8.12 < 17.4.5 / 17.5 < 17.5.3 / 17.6 < 17.6.1 (CVE-2024-8114)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - Missing Authorization in GitLab CVE-2024-8114 Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C Tenabl...

8.8CVSS5.5AI score0.00684EPSS
Exploits0References4
Rows per page
Query Builder