CVE-2023-3484

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Jul 21, 2023

Updated: Jul 31, 2023

CWE ID 22

Summary

CVE-2023-3484 is a vulnerability affecting GitLab Enterprise Edition (EE). This issue impacts versions 12.8 to 15.11.11, 16.0 to 16.0.7, and 16.1 to 16.1.2. An attacker can exploit this vulnerability by altering the name or path of a public top-level group in specific scenarios, potentially leading to unauthorized access or data manipulation. GitLab urges users to upgrade to the patched versions to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/rzatSn
https://www.cve.org/CVERecord?id=CVE-2023-3484
https://nvd.nist.gov/vuln/detail/CVE-2023-3484

Back to Vulnerability Database

CVE-2023-3484

CVSS 3.1 Score 7.5 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations