National Cyber Warfare Foundation (NCWF) Forums


GitLab Authentication Bypass Vulnerability (CVE-2024-6385) Notification
0 user ratings		2024-07-12 14:11:20
milo
Blue Team (CND)

Overview Recently, NSFOCUS CERT detected that GitLab issued a security announcement and fixed the identity bypass vulnerability (CVE-2024-6385) in GitLab Community Edition (CE) and Enterprise Edition (EE). Due to the incomplete fixing of CVE-2024-5655, if the target branch has been deleted, when the target Gitlab repository merges the Merge Request controllable by attackers, The Pipeline […]


The post GitLab Authentication Bypass Vulnerability (CVE-2024-6385) Notification appeared first on NSFOCUS, Inc., a global network and cyber security leader, protects enterprises and carriers from advanced cyber attacks..


The post GitLab Authentication Bypass Vulnerability (CVE-2024-6385) Notification appeared first on Security Boulevard.



NSFOCUS

Source: Security Boulevard
Source Link: https://securityboulevard.com/2024/07/gitlab-authentication-bypass-vulnerability-cve-2024-6385-notification/

Comments
new comment
Nobody has commented yet. Will you be the first?
  
Forum
Blue Team (CND)


Copyright 2012 through 2024 - National Cyber Warfare Foundation - All rights reserved worldwide.