An issue has been discovered in GitLab CE/EE affecting all versions from 8.13 before 14.10.5, 15.0 before 15.0.4, and 15.1 before 15.1.1. Under certain conditions, using the REST API an unprivileged user was able to change labels description.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
gitlab gitlab 15.1.0 |
||
gitlab gitlab |