vulnerability
FreeBSD: VID-BCC8B21E-7122-11EF-BECE-2CF05DA270F3 (CVE-2024-8311): Gitlab -- vulnerabilities
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:N/AC:L/Au:S/C:N/I:C/A:N) | Sep 11, 2024 | Sep 13, 2024 | Jan 28, 2025 |
Severity
7
CVSS
(AV:N/AC:L/Au:S/C:N/I:C/A:N)
Published
Sep 11, 2024
Added
Sep 13, 2024
Modified
Jan 28, 2025
Description
An issue was discovered with pipeline execution policies in GitLab EE affecting all versions from 17.2 prior to 17.2.5, 17.3 prior to 17.3.2 which allows authenticated users to bypass variable overwrite protection via inclusion of a CI/CD template.
Solution(s)
freebsd-upgrade-package-gitlab-cefreebsd-upgrade-package-gitlab-ee
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.