7 matches found
CVE-2024-8114
An issue has been discovered in GitLab CE/EE affecting all versions from 8.12 before 17.4.5, 17.5 before 17.5.3, and 17.6 before 17.6.1. This issue allows an attacker with access to a victim's Personal Access Token PAT to escalate privileges...
CVE-2024-8114 Missing Authorization in GitLab
An issue has been discovered in GitLab CE/EE affecting all versions from 8.12 before 17.4.5, 17.5 before 17.5.3, and 17.6 before 17.6.1. This issue allows an attacker with access to a victim's Personal Access Token PAT to escalate privileges...
CVE-2024-8114
CVE-2024-8114 affects GitLab CE/EE versions 8.12 through before 17.4.5, 17.5 before 17.5.3, and 17.6 before 17.6.1. An attacker who has access to a victim’s Personal Access Token (PAT) can escalate privileges. The impact is privilege escalation with high potential impact on confidentiality, integ...
CVE-2024-8114
Removed by vendor...
CVE-2024-8114 Missing Authorization in GitLab
An issue has been discovered in GitLab CE/EE affecting all versions from 8.12 before 17.4.5, 17.5 before 17.5.3, and 17.6 before 17.6.1. This issue allows an attacker with access to a victim's Personal Access Token PAT to escalate privileges...
CVE-2024-8114
creationtimestamp| type| source ---|---|--- 2024-11-26 15:33:23+00:00| seen| https://infosec.exchange/users/screaminggoat/statuses/113549980676758562 2024-11-26 18:37:04+00:00| seen| https://infosec.exchange/users/cve/statuses/113550702917565745 2024-11-27 07:56:33+00:00| seen|...
GitLab 8.12 < 17.4.5 / 17.5 < 17.5.3 / 17.6 < 17.6.1 (CVE-2024-8114)
The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - Missing Authorization in GitLab CVE-2024-8114 Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C Tenabl...