An improper access control vulnerability exists in GitLab Remote Development affecting all versions prior to 16.5.6, 16.6 prior to 16.6.4 and 16.7 prior to 16.7.2. This condition allows an attacker to create a workspace in one group that is associated with an agent from another group.
References
Link | Resource |
---|---|
https://gitlab.com/gitlab-org/gitlab/-/issues/432188 | Broken Link |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: GitLab
Published: 2024-01-12T13:56:31.881Z
Updated: 2024-02-13T04:04:08.604Z
Reserved: 2023-12-19T17:02:08.767Z
Link: CVE-2023-6955
JSON object: View
NVD Information
Status : Analyzed
Published: 2024-01-12T14:15:49.233
Modified: 2024-01-18T21:16:42.053
Link: CVE-2023-6955
JSON object: View
Redhat Information
No data.