Recent Vulnerabilities Research Posts Trends Blog About Contact

Related Vulnerabilities: CVE-2021-39890

It was possible to bypass 2FA for LDAP users and access some specific pages with Basic Authentication in GitLab 14.1.1 and above.

Source

Severity Low

Remote Yes

Type Access restriction bypass

Description

It was possible to bypass 2FA for LDAP users and access some specific pages with Basic Authentication in GitLab 14.1.1 and above.

AVG-2431 gitlab 14.3.0-1 14.3.1-1 High Fixed

https://about.gitlab.com/releases/2021/09/30/security-release-gitlab-14-3-1-released/#ldap-users-can-bypass-2fa-and-load-certain-pages-with-http-basic-auth

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

Vulmon Search

About

Products

Connect