GitLab suffers from a privilege escalation vulnerability via the impersonate feature. Versions 8.2.0 up to and including 8.2.4, 8.3.0 up to and including 8.3.8, 8.4.0 up to and including 8.4.9, 8.5.0 up to and including 8.5.11, 8.6.0 up to and including 8.6.7, and 8.7.0 are affected.