Critical GitLab bug lets attackers run pipelines as any user

June 27, 2024, 2:53 p.m. | Bill Toulas

BleepingComputer www.bleepingcomputer.com

A critical vulnerability is affecting certain versions of GitLab Community and Enterprise Edition products, which could be exploited to run pipelines as any user. [...]

attackers bug community critical critical vulnerability enterprise enterprise edition exploited gitlab pipelines products run security vulnerability

Visit resource

More from www.bleepingcomputer.com / BleepingComputer

New regreSSHion OpenSSH RCE bug gives root on Linux servers 4 hours ago | www.bleepingcomputer.com

bug code code execution glibc +15

Router maker's support portal responds with MetaMask phishing 9 hours ago | www.bleepingcomputer.com

bleepingcomputer compromise emails helpdesk +13

Router maker's support portal hacked, replies with MetaMask phishing 9 hours ago | www.bleepingcomputer.com

bleepingcomputer compromise emails hacked +15

Google Chrome to let Isolated Web App access sensitive USB devices 20 hours ago | www.bleepingcomputer.com

access api app apps +16

Juniper releases out-of-cycle fix for max severity auth bypass flaw 1 day, 2 hours ago | www.bleepingcomputer.com

address assurance auth authentication +20

Dev rejects CVE severity, makes his GitHub repo read-only 1 day, 3 hours ago | www.bleepingcomputer.com

bogus cve cves dev +14

Fake IT support sites push malicious PowerShell scripts as Windows fixes 1 day, 3 hours ago | www.bleepingcomputer.com

devices error errors fake +13

Microsoft resumes rollout of Windows 11 KB5039302 update for most users 1 day, 23 hours ago | www.bleepingcomputer.com

blocking june microsoft resumes +6

Hackers exploit critical D-Link DIR-859 router flaw to steal passwords 2 days, 2 hours ago | www.bleepingcomputer.com

account collect critical critical vulnerability +17

Data Loss Prevention Analyst 1

@ Advanced Energy | Quezon City, 00, PH, n/a

View on infosec-jobs.com

TC-CS-DPP MS Purview-Staff

@ EY | Bengaluru, KA, IN, 560048

View on infosec-jobs.com

Consultant CSIRT Confirmé H/F (Paris)

@ EY | Paris La Défense, FR, 92037

View on infosec-jobs.com

Consultant Azure Cloud Sécurité CSPM H/F (Paris)

@ EY | Paris La Défense, FR, 92037

View on infosec-jobs.com

Consultant en Protection des Données (Microsoft Purview) H/F (Paris)

@ EY | Paris La Défense, FR, 92037

View on infosec-jobs.com

Business Continuity Coordinator

@ Sumitomo Mitsui Banking Corporation | Brea, CA, US, 92821

View on infosec-jobs.com

all InfoSec News

Critical GitLab bug lets attackers run pipelines as any user

More from www.bleepingcomputer.com / BleepingComputer

Jobs in InfoSec / Cybersecurity

Data Loss Prevention Analyst 1

TC-CS-DPP MS Purview-Staff

Consultant CSIRT Confirmé H/F (Paris)

Consultant Azure Cloud Sécurité CSPM H/F (Paris)

Consultant en Protection des Données (Microsoft Purview) H/F (Paris)

Business Continuity Coordinator