• caglararli@hotmail.com
  • 05386281520

CVE-2024-5470 | GitLab Community Edition/Enterprise Edition up to 17.0.3/17.1.1 Project-level Deploy Token admin_push_rules access control (Issue 464312)

Çağlar Arlı      -    7 Views

CVE-2024-5470 | GitLab Community Edition/Enterprise Edition up to 17.0.3/17.1.1 Project-level Deploy Token admin_push_rules access control (Issue 464312)

A vulnerability, which was classified as problematic, has been found in GitLab Community Edition and Enterprise Edition up to 17.0.3/17.1.1. This issue affects the function admin_push_rules of the component Project-level Deploy Token Handler. The manipulation leads to improper access controls. The identification of this vulnerability is CVE-2024-5470. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.