GitLab Authentication Bypass Vulnerability (CVE-2024-6385) Notification

Overview Recently, NSFOCUS CERT detected that GitLab issued a security announcement and fixed the identity bypass vulnerability (CVE-2024-6385) in GitLab Community Edition (CE) and Enterprise Edition (EE). Due to the incomplete fixing of CVE-2024-5655, if the target branch has been deleted, when the target Gitlab repository merges the Merge Request controllable by attackers, The Pipeline […]

The post GitLab Authentication Bypass Vulnerability (CVE-2024-6385) Notification appeared first on NSFOCUS, Inc., a global network and cyber security leader, protects enterprises and carriers from advanced cyber attacks..

The post GitLab Authentication Bypass Vulnerability (CVE-2024-6385) Notification appeared first on Security Boulevard.