An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.7 before 16.9.6, all versions starting from 16.10 before 16.10.4, all versions starting from 16.11 before 16.11.1 where personal access scopes were not honored by GraphQL subscriptions
References
Link | Resource |
---|---|
https://gitlab.com/gitlab-org/gitlab/-/issues/455805 |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: GitLab
Published: 2024-04-25T13:30:36.721Z
Updated: 2024-06-20T19:31:15.040Z
Reserved: 2024-04-19T17:02:07.129Z
Link: CVE-2024-4006
JSON object: View
NVD Information
Status : Awaiting Analysis
Published: 2024-04-25T14:15:09.667
Modified: 2024-04-25T17:25:05.903
Link: CVE-2024-4006
JSON object: View
Redhat Information
No data.
CWE