Check Point Reference: |
CPAI-2023-1499 |
Date Published: |
10 Mar 2024 |
Severity: |
High
|
Last Updated: |
Sunday 10 March, 2024 |
Source: |
|
Industry Reference: | CVE-2023-7028
|
Protection Provided by: |
Security Gateway R81, R80, R77, R75 |
Who is Vulnerable? | GitLab 12.2.0 and later, prior to 16.5.6 GitLab 12.2.0 and later, prior to 16.5.6 GitLab 16.1.0 and later, prior to 16.1.6 GitLab 16.1.0 and later, prior to 16.1.6 GitLab 16.2.0 and later, prior to 16.2.9 GitLab 16.2.0 and later, prior to 16.2.9 GitLab 16.3.0 and later, prior to 16.3.7 GitLab 16.3.0 and later, prior to 16.3.7 GitLab 16.4.0 and later, prior to 16.4.5 GitLab 16.4.0 and later, prior to 16.4.5 GitLab 16.6.0 and later, prior to 16.6.4 GitLab 16.6.0 and later, prior to 16.6.4 GitLab 16.7.0 Community Edition GitLab 16.7.0 Enterprise Edition GitLab 16.7.1 Community Edition GitLab 16.7.1 Enterprise Edition |
Vulnerability Description |
A privilege escalation vulnerability exists in GitLab Community and Enterprise Edition. Successfully exploiting this vulnerability could result in GitLab accounts takeover. |