Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2024-5430

Опубликовано: 27 июн. 2024
Источник: debian
EPSS Низкий

Описание

An issue was discovered in GitLab CE/EE affecting all versions starting from 16.10 prior to 16.11.5, starting from 17.0 prior to 17.0.3, and starting from 17.1 prior to 17.1.1, which allows a project maintainer can delete the merge request approval policy via graphQL.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
gitlabfixed17.3.5-2package

EPSS

Процентиль: 2%
0.00015
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2024-5430

CVSS3: 6.8
ubuntu
12 месяцев назад

An issue was discovered in GitLab CE/EE affecting all versions starting from 16.10 prior to 16.11.5, starting from 17.0 prior to 17.0.3, and starting from 17.1 prior to 17.1.1, which allows a project maintainer can delete the merge request approval policy via graphQL.

nvd логотип

CVE-2024-5430

CVSS3: 6.8
nvd
12 месяцев назад

An issue was discovered in GitLab CE/EE affecting all versions starting from 16.10 prior to 16.11.5, starting from 17.0 prior to 17.0.3, and starting from 17.1 prior to 17.1.1, which allows a project maintainer can delete the merge request approval policy via graphQL.

github логотип

GHSA-w9qv-xhc6-m43c

CVSS3: 6.8
github
12 месяцев назад

An issue was discovered in GitLab CE/EE affecting all versions starting from 16.10 prior to 16.11.5, starting from 17.0 prior to 17.0.3, and starting from 17.1 prior to 17.1.1, which allows a project maintainer can delete the merge request approval policy via graphQL.

fstec логотип

BDU:2024-07960

CVSS3: 6.8
fstec
около 1 года назад

Уязвимость реализации прикладного программного интерфейса программной платформы на базе git для совместной работы над кодом GitLab, позволяющая нарушителю получить доступ на чтение, изменение или удаление данных

EPSS

Процентиль: 2%
0.00015
Низкий