all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

GitLab Patches Critical Remote Code Execution Vulnerability

Add to bookmarks
Aug. 23, 2022, 4:05 p.m. | Ionut Arghire

SecurityWeek RSS Feed www.securityweek.com

DevOps platform GitLab has issued patches for a critical remote code execution vulnerability impacting its GitLab Community Edition (CE) and Enterprise Edition (EE) releases.


Tracked as CVE-2022-2884 (CVSS 9.9/10 severity), the security flaw can be exploited via the GitHub import API, but requires authentication to be triggered.


read more

application security audits cloud security code code execution critical data protection email security endpoint security gitlab identity & access incident response malware network security news & industry patches phishing privacy remote code execution tracking & law enforcement virus & malware vulnerabilities vulnerability

Visit resource

More from www.securityweek.com / SecurityWeek RSS Feed

Virtual Event Tomorrow: Ransomware Resilience & Recovery Summit 6 hours ago | www.securityweek.com
amp attacks can event +12
Critical PuTTY Vulnerability Allows Secret Key Recovery 7 hours ago | www.securityweek.com
attackers compromise critical cve +14
Cryptojacker Arrested, Charged for Defrauding Cloud Providers of $3.5 Million 9 hours ago | www.securityweek.com
arrested charged cloud cryptojacker +3
Cloud Users Warned of Data Exposure Risk From Command-Line Tools 9 hours ago | www.securityweek.com
aws azure cloud cloud security +11
Hacker Conversations: Kevin O’Connor, From Childhood Hacker to NSA Operative 10 hours ago | www.securityweek.com
adlumin conversations director hacker +9
Ransomware Group Starts Leaking Data Allegedly Stolen From Change Healthcare 11 hours ago | www.securityweek.com
change change healthcare data data breach +9
You Against the World: The Offenders Dilemma 11 hours ago | www.securityweek.com
attackers dilemma fortify modeling +6
Omni Hotels Says Personal Information Stolen in Ransomware Attack 11 hours ago | www.securityweek.com
attack compromised customer cyberattack +13
Delinea Scrambles to Patch Critical Flaw After Failed Responsible Disclosure Attempt 13 hours ago | www.securityweek.com
authentication authentication bypass bypass bypass vulnerability +15

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Cyber Security Professional

@ BT Group | 25A DLF City Phase-III,, Gurugram, India
View on infosec-jobs.com

Head of Cyber Security Operations

@ Vector Limited | Auckland, New Zealand
View on infosec-jobs.com

Security Analyst (SOC)

@ Accesa & RaRo | Cluj-Napoca, Romania
View on infosec-jobs.com

Senior - IT Compliance-Cyber (Technology Risk Consulting)

@ EY | Bengaluru, KA, IN, 560016
View on infosec-jobs.com

Security Automation Engineer Internship - Secure Development Team Product Security (Brno, Czech Republic)

@ Red Hat | Brno, Czechia
View on infosec-jobs.com
View more jobs