Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-1071


An issue has been discovered in GitLab affecting all versions from 15.5 before 15.8.5, all versions starting from 15.9 before 15.9.4, all versions starting from 15.10 before 15.10.1. Due to improper permissions checks it was possible for an unauthorised user to remove an issue from an epic.


Published

2023-04-05T21:15:07.200

Last Modified

2025-02-10T21:15:13.993

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 3.1 (LOW)

Weaknesses
  • Type: Primary
    CWE-863
  • Type: Secondary
    CWE-400

Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application gitlab gitlab < 15.8.5 Yes
Application gitlab gitlab < 15.8.5 Yes
Application gitlab gitlab < 15.9.4 Yes
Application gitlab gitlab < 15.9.4 Yes
Application gitlab gitlab 15.10.0 Yes
Application gitlab gitlab 15.10.0 Yes

References