CVE-2023-5226

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Published Dec 1, 2023

Updated: Dec 6, 2023

CWE ID 601

Summary

CVE-2023-5226 is a vulnerability affecting GitLab versions before 16.4.3, as well as specific versions of 16.5 and 16.6. This issue allows malicious actors to bypass branch checks and manipulate repository content in the UI, using specially crafted branch names under certain circumstances. This vulnerability could potentially enable unauthorized changes to repositories, posing a significant risk to organizations using GitLab for source code management. Users are advised to update to the latest versions to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Brave Browser

Affected Vendors

Brave

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/t-LmPA
https://www.cve.org/CVERecord?id=CVE-2023-5226
https://nvd.nist.gov/vuln/detail/CVE-2023-5226

Back to Vulnerability Database