all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

GitLab Patches Critical Account Takeover Vulnerability

Add to bookmarks
April 4, 2022, 10:54 a.m. | Ionut Arghire

SecurityWeek RSS Feed www.securityweek.com

DevOps platform GitLab has reset the passwords of some user accounts, after addressing a critical account takeover vulnerability.


According to the company, in GitLab Community Edition (CE) and Enterprise Edition (EE) versions prior to 14.7.7, 14.8.5, and 14.9.2, a hardcoded password was set when the account was registered using an OmniAuth provider.


read more



account takeover critical gitlab news & industry patches takeover vulnerabilities vulnerability

Visit resource

More from www.securityweek.com / SecurityWeek RSS Feed

In Other News: China Hacked Volkswagen, DDoS Service Shutdown, Rubrik IPO an hour ago | www.securityweek.com
china chinese ddos ddos service +15
Darktrace to be Taken Private in $5.3 Billion Sale to Thoma Bravo an hour ago | www.securityweek.com
acquisition artificial intelligence cash cybersecurity +10
Critical WordPress Automatic Plugin Vulnerability Exploited to Inject Backdoors 3 hours ago | www.securityweek.com
automatic backdoors critical cybercrime +11
Predictive Security Startup BforeAI Raises $15 Million 21 hours ago | www.securityweek.com
artificial intelligence attack bfore.ai funding +15
Palo Alto Networks Shares Remediation Advice for Hacked Firewalls 23 hours ago | www.securityweek.com
advice alto cve cve-2024 +12
Autodesk Drive Abused in Phishing Attacks 1 day ago | www.securityweek.com
accounts attacks autodesk campaign +10
FTC Sending $5.6 Million in Refunds to Ring Customers Over Security Failures 1 day, 1 hour ago | www.securityweek.com
customers data protection failures ftc +5
Vulnerabilities Expose Brocade SAN Appliances, Switches to Hacking 1 day, 1 hour ago | www.securityweek.com
application brocade expose hacking +7
Endpoint Security Firm ThreatLocker Raises $115 Million in Series D Funding 1 day, 3 hours ago | www.securityweek.com
cybersecurity funding endpoint endpoint security funding +8

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

IT Security Manager

@ Teltonika | Vilnius/Kaunas, VL, LT
View on infosec-jobs.com

Security Officer - Part Time - Harrah's Gulf Coast

@ Caesars Entertainment | Biloxi, MS, United States
View on infosec-jobs.com

DevSecOps Full-stack Developer

@ Peraton | Fort Gordon, GA, United States
View on infosec-jobs.com

Cybersecurity Cooperation Lead

@ Peraton | Stuttgart, AE, United States
View on infosec-jobs.com

Cybersecurity Engineer - Malware & Forensics

@ ManTech | 201DU - Customer Site,Herndon, VA
View on infosec-jobs.com
View more jobs