🚨 Urgent Security Update: Critical Flaw in GitLab Pipeline 🚨
(CVE-2023-4998) impacting versions 13.12 through 16.2.7 and 16.3 through 16.3.4 of GitLab Community Edition (CE) and Enterprise Edition (EE). The flaw allows attackers to impersonate users, potentially resulting in unauthorized access to sensitive data and code execution.
This flaw was initially rated as medium-severity (CVE-2023-3932) but was escalated to critical due to its potential impact.
The affected versions have been patched in GitLab Community Edition and Enterprise Edition 16.3.4 and 16.2.7. If you are using an earlier version, consider the provided mitigation steps outlined in the bulletin.
https://about.gitlab.com/releases/2023/09/18/security-release-gitlab-16-3-4-released/
#GitLab #CVE-2023-4998
(CVE-2023-4998) impacting versions 13.12 through 16.2.7 and 16.3 through 16.3.4 of GitLab Community Edition (CE) and Enterprise Edition (EE). The flaw allows attackers to impersonate users, potentially resulting in unauthorized access to sensitive data and code execution.
This flaw was initially rated as medium-severity (CVE-2023-3932) but was escalated to critical due to its potential impact.
The affected versions have been patched in GitLab Community Edition and Enterprise Edition 16.3.4 and 16.2.7. If you are using an earlier version, consider the provided mitigation steps outlined in the bulletin.
https://about.gitlab.com/releases/2023/09/18/security-release-gitlab-16-3-4-released/
#GitLab #CVE-2023-4998