Gitlab Authorization Bypass Vulnerability Let Attackers Steal Protected Variables | allinfosecnews.com

March 8, 2024, 11:06 a.m. | Dhivya

Cyber Security News cybersecuritynews.com

GitLab has announced the release of updated versions for its Community Edition (CE) and Enterprise Edition (EE) platforms. These updates address critical vulnerabilities that could allow attackers to bypass authorization mechanisms and access protected variables. The updates, versions 16.9.2, 16.8.4, and 16.7.7, come as a response to the discovery of two major security flaws, CVE-2024-0199 […]

The post Gitlab Authorization Bypass Vulnerability Let Attackers Steal Protected Variables appeared first on Cyber Security News.

16.7 access address attackers authorization bypass bypass vulnerability community critical critical vulnerabilities cyber security discovery enterprise gitlab platforms release response steal updates vulnerabilities vulnerability

More from cybersecuritynews.com / Cyber Security News

Free Workshop from Security Risk Advisors Empowers Organizations to Select Optimal OT Security Tools 2 hours ago | cybersecuritynews.com

advisors consultants detection environments +23

Hackers Using Weaponized Shortcut Files To Deploy CHM Malware 4 hours ago | cybersecuritynews.com

chm code cyber-attack cyber security +13

MorLock Ransomware Attacking Organizations to Steal Business Data 4 hours ago | cybersecuritynews.com

active cyber attacks business businesses +16

University System of Georgia Says 800,000 Students Impacted in MOVEit Hack 6 hours ago | cybersecuritynews.com

breach confidential cyber security data +19

City of Wichita Ransomware Attack: Services Impacted 6 hours ago | cybersecuritynews.com

assault attack city city of wichita +17

Hackers Exploit Litespeed Plugin Flaw To Create Rogue Admin Accounts 7 hours ago | cybersecuritynews.com

accounts admin attackers code +24

DocGo Confirms Cyber Attack: Hackers Steal Patients Data 8 hours ago | cybersecuritynews.com

access acquisition ambulance attack +26

Microsoft Unveils Air-Gapped GPT-4 for U.S. Intelligence Agencies 10 hours ago | cybersecuritynews.com

ai model air air-gapped ai technologies +24

Akamai to Acquire API Security Startup Noname for $450 Million 14 hours ago | cybersecuritynews.com

acquisition akamai akamai technologies api +17

Senior PAM Security Engineer

@ Experian | Hyderabad, India

View on infosec-jobs.com

Cybersecurity Analyst II

@ Spry Methods | Washington, DC (Hybrid)

View on infosec-jobs.com

Cyber Security Engineer

@ Expleo | Gothenburg, AC, Sweden

View on infosec-jobs.com

Cybersecurity – Information System Security Manager (ISSM)

@ Boeing | USA - Albuquerque, NM

View on infosec-jobs.com

Senior Security Engineer - Canada

@ DataVisor | Ontario, Canada - Remote

View on infosec-jobs.com

Cybersecurity Architect

@ HARMAN International | JP Tokyo 3-5-7 Ariake Koto-ku

View on infosec-jobs.com