all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

GitLab Arbitrary File Write Vulnerability (CVE-2024-0402) Alert

Add to bookmarks
Jan. 26, 2024, 6:44 a.m. | NSFOCUS

Security Boulevard securityboulevard.com

Overview Recently, NSFOCUS CERT detected that GitLab officially released a security announcement and fixed an arbitrary file write vulnerability (CVE-2024-0402) in GitLab Community Edition (CE) and Enterprise Edition (EE). Due to path traversal issues, authenticated attackers can copy files to any location on the GitLab server when creating workspaces. The CVSS score is 9.9, affected […]


The post GitLab Arbitrary File Write Vulnerability (CVE-2024-0402) Alert appeared first on NSFOCUS, Inc., a global network and cyber security leader, protects enterprises and …

alert announcement arbitrary file write attackers blog can cert community copy cve cve-2024-0402 cvss cvss score emergency-response enterprise file files file write vulnerability gitlab location nsfocus path path traversal score security server vulnerability

Visit resource

More from securityboulevard.com / Security Boulevard

Security in the AI Sector: Understanding Infostealer Exposures and Corporate Risks 4 hours ago | securityboulevard.com
blog corporate emerging infostealer +9
Reading the Mandiant M-Trends 2024 5 hours ago | securityboulevard.com
blog etc incidents live +9
Lawsuits After Ransomware on the Rise, Comparitech Says 9 hours ago | securityboulevard.com
attacks companies cost of data breach cyberlaw +24
How Do I Protect My AI Model? 9 hours ago | securityboulevard.com
ai model ai models assets mend +4
Product Release: PreVeil 5.0 10 hours ago | securityboulevard.com
list page product product release +5
What’s hot at RSAC 2024: 8 SSCS talks you don’t want to miss 12 hours ago | securityboulevard.com
appsec & supply chain security cisos development don +16
ADCS Attack Paths in BloodHound — Part 2 12 hours ago | securityboulevard.com
abuse active directory adc adcs +16
It’s 3am… Do You Know Where Your Data Is? 13 hours ago | securityboulevard.com
3am blog data security +2
AI: Separating Fact from Fiction 13 hours ago | securityboulevard.com
fact fantasy fiction movies +2

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote
View on infosec-jobs.com

Senior Software Engineer, Security

@ Niantic | Zürich, Switzerland
View on infosec-jobs.com

Consultant expert en sécurité des systèmes industriels (H/F)

@ Devoteam | Levallois-Perret, France
View on infosec-jobs.com

Cybersecurity Analyst

@ Bally's | Providence, Rhode Island, United States
View on infosec-jobs.com

Digital Trust Cyber Defense Executive

@ KPMG India | Gurgaon, Haryana, India
View on infosec-jobs.com

Program Manager - Cybersecurity Assessment Services

@ TestPros | Remote (and DMV), DC
View on infosec-jobs.com
View more jobs