| Check Point Reference: |
CPAI-2023-1499 |
| Date Published: |
10 Mar 2024 |
| Severity: |
High
|
| Last Updated: |
Sunday 10 March, 2024 |
| Source: |
|
| Industry Reference: | CVE-2023-7028
|
| Protection Provided by: |
Security Gateway
R81, R80, R77, R75 |
| Who is Vulnerable? | GitLab 12.2.0 and later, prior to 16.5.6
GitLab 12.2.0 and later, prior to 16.5.6
GitLab 16.1.0 and later, prior to 16.1.6
GitLab 16.1.0 and later, prior to 16.1.6
GitLab 16.2.0 and later, prior to 16.2.9
GitLab 16.2.0 and later, prior to 16.2.9
GitLab 16.3.0 and later, prior to 16.3.7
GitLab 16.3.0 and later, prior to 16.3.7
GitLab 16.4.0 and later, prior to 16.4.5
GitLab 16.4.0 and later, prior to 16.4.5
GitLab 16.6.0 and later, prior to 16.6.4
GitLab 16.6.0 and later, prior to 16.6.4
GitLab 16.7.0 Community Edition
GitLab 16.7.0 Enterprise Edition
GitLab 16.7.1 Community Edition
GitLab 16.7.1 Enterprise Edition |
| Vulnerability Description |
A privilege escalation vulnerability exists in GitLab Community and Enterprise Edition. Successfully exploiting this vulnerability could result in GitLab accounts takeover. |
Vulmon