URGENT: Upgrade GitLab – Critical Workspace Creation Flaw Allows File Overwrite – ITTS

URGENT: Upgrade GitLab – Critical Workspace Creation Flaw Allows File Overwrite

30 January 2024

GitLab once again released fixes to address a critical security flaw in its Community Edition (CE) and Enterprise Edition (EE) that could be exploited to write arbitrary files while creating a workspace. Tracked as CVE-2024-0402, the vulnerability has a CVSS score of 9.9 out of a maximum of 10.

Source: The Hacker News

Date:

30 January 2024

Categorie(s):

Tag(s):

Creation, Critical, DevSecOps, Files, Flaws

Scumbag puts ‘stolen’ Nokia source code, SSH and RSA keys, more up for sale6 November 2024
Canada arrests suspected hacker over breach of 160+ Snowflake users’ data6 November 2024
Cyberthreats linked to foreign actors aim to hinder Election Day proceedings5 November 2024
DocuSign’s API used to lure victims into e-signing fake invoices5 November 2024
Schneider Electric ransomware crew demands $125k paid in baguettes5 November 2024