all InfoSec news
GitLab warns zero-click vulnerability could lead to account takeovers
Malware Analysis, News and Indicators - Latest topics malware.news
GitLab has issued a warning about a critical vulnerability in GitLab Community Edition (CE) and Enterprise Edition (EE). GitLab is an online DevOps platform that allows developers to collaborate on creating software. Organizations have a choice to install GitLab on their own server(s) or under GitLab’s control on GitLab.com.
The vulnerability allows a successful attacker to easily take over users’ accounts without any interaction. To remediate the problem, users of self-managed instances must upgrade to a patched version following the …
account account takeovers click community control critical critical vulnerability developers devops enterprise gitlab install organizations own platform server software takeovers under vulnerability warning zero-click