all InfoSec news
5379 GitLab Servers are Vulnerable to Zero-Click Account Takeover Attacks
Cyber Security News cybersecuritynews.com
GitLab has released important security fixes for versions 16.7.2, 16.6.4, and 16.5.6 for GitLab Community Edition (CE) and Enterprise Edition (EE). The fixes include multiple bugs, including a critical account takeover vulnerability that does not require user interaction. However, other fixes were approval and removal bypass from CODEOWNERS, execution of slash commands by abusing Slack/Mattermost […]
The post 5379 GitLab Servers are Vulnerable to Zero-Click Account Takeover Attacks appeared first on Cyber Security News.
16.7 account account takeover account takeover attacks attacks bugs bypass click community critical cyber security enterprise fixes gitlab important security servers takeover vulnerabilities vulnerability vulnerable zero-click