CVE-2024-5470

CVE-2024-5470

An issue was discovered in GitLab CE/EE affecting all versions starting from 17.0 prior to 17.0.4 and from 17.1 prior to 17.1.2 where a Guest user with `admin_push_rules` permission may have been able to create project-level deploy tokens.

CVE-2024-5470

An issue was discovered in GitLab CE/EE affecting all versions startin ...

GHSA-mhv3-28f9-6jvj

An issue was discovered in GitLab CE/EE affecting all versions starting from 17.0 prior to 17.0.4 and from 17.1 prior to 17.1.2 where a Guest user with `admin_push_rules` permission may have been able to create project-level deploy tokens.

BDU:2024-05978

Уязвимость функции admin_push_rules компонента Project-level Deploy Token Handler программной платформы на базе git для совместной работы над кодом GitLab, позволяющая нарушителю создавать токен развертывания на уровне проекта