Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2023-6840

Published: 07/02/2024 Updated: 04/03/2024
CVSS v3 Base Score: 6.7 | Impact Score: 5.5 | Exploitability Score: 1.2
VMScore: 0
Subscribe to Gitlab

Vulnerability Summary

An issue has been discovered in GitLab EE affecting all versions from 16.4 before 16.6.7, 16.7 before 16.7.5, and 16.8 before 16.8.2 which allows a maintainer to change the name of a protected branch that bypasses the security policy added to block MR.

Vulnerable Product Search on Vulmon Subscribe to Product

gitlab gitlab

References

NVD-CWE-Otherhttps://gitlab.com/gitlab-org/gitlab/-/issues/435500https://hackerone.com/reports/2280292https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4671unauthorizedCVE-2024-4776CVE-2024-3407CVE-2024-26026CVE-2024-32888wirelessCVE-2024-4656template injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook