Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2026-4916

Опубликовано: 09 апр. 2026
Источник: ubuntu
Приоритет: medium
CVSS3: 2.7

Описание

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.2 before 18.8.9, 18.9 before 18.9.5, and 18.10 before 18.10.3 that could have allowed an authenticated user with custom role permissions to demote or remove higher-privileged group members due to improper authorization checks on member management operations.

РелизСтатусПримечание
devel

DNE

esm-apps/xenial

ignored

jammy

DNE

noble

DNE

questing

DNE

upstream

not-affected

debian: Vulnerable code introduced later

Показывать по

Ссылки на источники

2.7 Low

CVSS3

Связанные уязвимости

nvd логотип

CVE-2026-4916

CVSS3: 2.7
nvd
6 дней назад

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.2 before 18.8.9, 18.9 before 18.9.5, and 18.10 before 18.10.3 that could have allowed an authenticated user with custom role permissions to demote or remove higher-privileged group members due to improper authorization checks on member management operations.

debian логотип

CVE-2026-4916

CVSS3: 2.7
debian
6 дней назад

GitLab has remediated an issue in GitLab CE/EE affecting all versions ...

github логотип

GHSA-h92q-g5vv-9g2c

CVSS3: 2.7
github
6 дней назад

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.2 before 18.8.9, 18.9 before 18.9.5, and 18.10 before 18.10.3 that could have allowed an authenticated user with custom role permissions to demote or remove higher-privileged group members due to improper authorization checks on member management operations.

2.7 Low

CVSS3