3 matches found
BIT-GITLAB-2025-11702 Missing Authorization in GitLab
GitLab has remediated an issue in EE affecting all versions from 17.1 before 18.3.5, 18.4 before 18.4.3, and 18.5 before 18.5.1 that could have allowed an authenticated attacker with specific permissions to hijack project runners from other projects...
CVE-2025-11702
GitLab EE versions affected: 17.1–before 18.3.5, 18.4–before 18.4.3, and 18.5–before 18.5.1. An authenticated attacker with specific permissions could hijack project runners from other projects. Remediation: fixed in GitLab patch releases—18.3.5 (for 17.1 line), 18.4.3, and 18.5.1. See referenced...
CVE-2025-11702 Missing Authorization in GitLab
GitLab has remediated an issue in EE affecting all versions from 17.1 before 18.3.5, 18.4 before 18.4.3, and 18.5 before 18.5.1 that could have allowed an authenticated attacker with specific permissions to hijack project runners from other projects...