Platform

Featured Integrations

Reduce risk and mitigate cyber attacks, no matter your IT & security stack, maturity journey, or industry

See our Threat Intelligence Solutions in Action

Outcomes

Industries

Threat Intelligence solves pervasive challenges

Reduce operational risk through timely, precise, and actionable intelligence.

See Recorded Future’s Intelligence in Action

Products

Services

Research

Experience our platform live every week. Minimize risks with timely, actionable threat intelligence that helps you stay ahead of threats.

Join our Weekly Platform Preview

Resource Center

Additional Resources

Additional Topics

Resources

Why Recorded Future

About Us

Partner With Us

Join Us

Company

brand-logo-long-black.svg

Rectangular Logo - Digital (RGB).svg

Home

Blog

Careers

Contact Us

CVE-2024-3035 is a vulnerability affecting GitLab CE/EE versions 8.12 to 17.2.2. This issue involves a permission check flaw that permits LFS tokens to read and write unauthorized data in user-owned repositories. Versions prior to 17.0.6 for 8.12, 17.1.4 for 17.1, and 17.2.2 for 17.2 are all impacted, potentially exposing sensitive data or enabling unintended modifications.

CVE-2024-3035

Refine your search

We could not find any results for your search, so why not start with the articles listed below?

CVE-2024-3035

CVSS 3.1 Score 8.1 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations