Vulnerabilities Thousands of GitLab Instances Unpatched Against Critical Password Reset Bug Over 5,000 GitLab servers have yet to be patched against CVE-2023-7028, a critical password reset vulnerability. Ionut ArghireJanuary 25, 2024
Vulnerabilities GitLab Patches Critical Password Reset Vulnerability GitLab has resolved a critical authentication vulnerability allowing attackers to hijack password reset emails. Ionut ArghireJanuary 15, 2024
Vulnerabilities GitLab Patches Critical Pipeline Execution Vulnerability GitLab has released security updates to address a critical-severity vulnerability allowing an attacker to run pipelines as another user. Ionut ArghireSeptember 20, 2023
Vulnerabilities GitLab Security Update Patches Critical Vulnerability GitLab CE/EE version 16.0.1 patches a critical arbitrary file read vulnerability tracked as CVE-2023-2825. Ionut ArghireMay 25, 2023