First published: Mon Oct 17 2022(Updated: )
It was possible for a guest user to read a todo targeting an inaccessible note in Gitlab CE/EE affecting all versions from 15.0 prior to 15.2.5, 15.3 prior to 15.3.4, and 15.4 prior to 15.4.1.
Credit: cve@gitlab.com
Affected Software | Affected Version | How to fix |
---|---|---|
GitLab GitLab | >=15.0.0<15.2.5 | |
GitLab GitLab | >=15.0.0<15.2.5 | |
GitLab GitLab | >=15.3<15.3.4 | |
GitLab GitLab | >=15.3<15.3.4 | |
GitLab GitLab | >=15.4<15.4.1 | |
GitLab GitLab | >=15.4<15.4.1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.