Vulnerabilities > CVE-2024-0410 - Unspecified vulnerability in Gitlab

047910
CVSS 7.7 - HIGH
Attack vector
NETWORK
Attack complexity
HIGH
Privileges required
LOW
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
NONE
network
high complexity
gitlab

Summary

An authorization bypass vulnerability was discovered in GitLab affecting versions 15.1 prior to 16.7.6, 16.8 prior to 16.8.3, and 16.9 prior to 16.9.1. A developer could bypass CODEOWNERS approvals by creating a merge conflict.

Vulnerable Configurations

Part Description Count
Application
Gitlab
223