First published: Thu Aug 13 2020(Updated: )
For GitLab before 13.0.12, 13.1.6, 13.2.3 after a group transfer occurs, members from a parent group keep their access level on the subgroup leading to improper access.
Credit: cve@gitlab.com
Affected Software | Affected Version | How to fix |
---|---|---|
GitLab GitLab | >=10.5.0<13.0.12 | |
GitLab GitLab | >=10.5.0<13.0.12 | |
GitLab GitLab | >=13.1.0<13.1.6 | |
GitLab GitLab | >=13.1.0<13.1.6 | |
GitLab GitLab | >=13.2.0<13.2.3 | |
GitLab GitLab | >=13.2.0<13.2.3 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.