CVE-2024-6678 - GitLab Pipeline Escalation Vulnerability

2 months ago 31
ARTICLE AD BOX
CVE ID : CVE-2024-6678
Published : Sept. 12, 2024, 7:15 p.m. | 24 minutes ago
Description : An issue was discovered in GitLab CE/EE affecting all versions starting from 8.14 prior to 17.1.7, starting from 17.2 prior to 17.2.5, and starting from 17.3 prior to 17.3.2, which allows an attacker to trigger a pipeline as an arbitrary user under certain circumstances.
Severity: 9.9 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
Read Entire Article