GitLab patches 2nd critical pipeline vulnerability in last month

11 July 2024

GitLab has patched a second critical vulnerability in GitLab Community Edition (CE) and Enterprise Edition (EE) that could allow attackers to run pipelines as arbitrary users. The vulnerability, tracked as CVE-2024-6385, was fixed in a critical patch release Wednesday and is similar to another flaw, CVE-2024-5655, that was patched on June 26.

Source: SC Magazine

Date:

11 July 2024

Categorie(s):

NEWS

Tag(s):

GitLab, Open Source, Open Source Hosting, Open Source Software, Pipelines

CyberRisk TV live show wrap up from Oktane 202418 October 2024
Oktane 2024: Staying ahead of identity threats – David Bradbury 18 October 2024
Uncle Sam puts $10M bounty on Russian troll farm Rybar18 October 2024
Oktane 2024: An integrated approach to securing today’s hybrid workforce – Punit Minocha18 October 2024
Cicada3301 ransomware affiliate program infiltrated by security researchers18 October 2024