An improper access control vulnerability exists in GitLab Remote Development affecting all versions before 16.5.6, 16.6 before 16.6.4 and 16.7 before 16.7.2. This condition allows an malicious user to create a workspace in one group that is associated with an agent from another group.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
gitlab gitlab 16.7.0 |
||
gitlab gitlab 16.7.1 |
||
gitlab gitlab |