Security News > 2024 > September > GitLab releases fix for critical SAML authentication bypass flaw

GitLab releases fix for critical SAML authentication bypass flaw

2024-09-18 18:37

GitLab has released security updates to address a critical SAML authentication bypass vulnerability impacting self-managed installations of the GitLab Community Edition (CE) and Enterprise Edition (EE). [...]

News URL

https://www.bleepingcomputer.com/news/security/gitlab-releases-fix-for-critical-saml-authentication-bypass-flaw/

#authentication #bypass #critical #gitlab

Related news

GitLab patches critical authentication bypass vulnerabilities (source)
Moxa Issues Fix for Critical Authentication Bypass Vulnerability in PT Switches (source)
Critical Next.js Vulnerability Allows Attackers to Bypass Middleware Authorization Checks (source)
Critical Next.js auth bypass vulnerability opens web apps to compromise (CVE-2025-29927) (source)
Critical flaw in Next.js lets hackers bypass authorization (source)
Critical Ingress NGINX Controller Vulnerability Allows RCE Without Authentication (source)
Broadcom warns of authentication bypass in VMware Windows Tools (source)
Update VMware Tools for Windows Now: High-Severity Flaw Lets Hackers Bypass Authentication (source)
Critical auth bypass bug in CrushFTP now exploited in attacks (source)
ASUS warns of critical auth bypass flaw in routers using AiCloud (source)

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Gitlab		10	47	739	246	58	1090

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.