Tag: gitlab
-
Hackers Possibly Stole Personal Data From Bitcoin ATM Operator Byte Federal
Byte Federal says the personal information of 58,000 was compromised after a GitLab flaw allowed attackers to access a server. The post Hackers Possibly Stole Personal Data From Bitcoin ATM Operator Byte Federal appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/hackers-possibly-stole-personal-data-from-bitcoin-atm-operator-byte-federal/
-
Bitcoin ATM firm Byte Federal hacked via GitLab flaw, 58K users exposed
by
in SecurityNewsUS Bitcoin ATM operator Byte Federal has disclosed a data breach that exposed the data of 58,000 customers after its systems were breached using a GitLab vulnerability. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/bitcoin-atm-firm-byte-federal-hacked-via-gitlab-flaw-58k-users-exposed/
-
GitLab Security Update, Patch for Critical Vulnerabilities
by
in SecurityNewsGitLab announced the release of critical security patches for its Community Edition (CE) and Enterprise Edition (EE). The newly released versions 17.6.2, 17.5.4, and 17.4.6 address several high-severity vulnerabilities, and GitLab strongly recommends that all self-managed installations be upgraded immediately. It is worth noting that GitLab.com is already running the patched version, while GitLab-dedicated customers…
-
Wiederherstellung und Backup für GitHub, GitLab und Bitbucket – HYCU ermöglicht Code ohne Datenverlustrisiko
by
in SecurityNewsFirst seen on security-insider.de Jump to article: www.security-insider.de/hycu-unterstuetzt-github-gitlab-data-protection-a-ac1b75e41a693e8ee1674848f71193c3/
-
YouShallNotPass! Hardening CI/CD pipelines on mission critical environments
by
in SecurityNewsKudelski Security has developed an open-source solution named YouShallNotPass (YSNP) to enhance the security of GitLab and GitHub pipelines. YSNP vali… First seen on research.kudelskisecurity.com Jump to article: research.kudelskisecurity.com/2023/11/01/youshallnotpass-hardening-ci-cd-pipelines-on-mission-critical-environments/
-
Hochriskante Sicherheitslücke in PostgreSQL: Gitlab patcht (noch) nicht
by
in SecurityNewsEine bekannte Lücke ermöglicht es einfachen Nutzern, in PostgreSQL Befehle einzuschleusen. Ein Update gäbe es. GitLab installiert es bislang nicht. First seen on heise.de Jump to article: www.heise.de/news/Hochriskante-Sicherheitsluecke-in-PostgreSQL-Gitlab-patcht-noch-nicht-10181730.html
-
Critical Gitlab Vulnerability Let Attackers Escalate Privileges
by
in SecurityNewsGitLab, a widely used platform for DevOps lifecycle management, has released critical security updates for its Community Edition (CE) and Enterprise Edition (EE). The updates address multiple vulnerabilities, including a high-severity issue that could allow attackers to escalate privileges via compromised tokens. The company strongly advises all self-managed GitLab installations to upgrade immediately to the…
-
Updates verfügbar: Mehrere Sicherheitslücken bedrohen Gitlab
by
in SecurityNewsMehrere Software-Schwachstellen bedrohen die Community Edition und die Enterprise Edition von Gitlab. First seen on heise.de Jump to article: www.heise.de/news/Sicherheitsluecken-Entwickler-ruesten-Gitlab-gegen-unbefugte-Zugriffe-10035049.html
-
GitLab Patches HTML Injection Flaw Leads to XSS Attacks
GitLab has announced the release of critical security updates for its Community Edition (CE) and Enterprise Edition (EE). The updates address a high-s… First seen on gbhackers.com Jump to article: gbhackers.com/gitlab-patches-html-injection-flaw/
-
Internet Archive was breached twice in a month
by
in SecurityNewsThe Internet Archive was breached again, attackers hacked its Zendesk email support platform through stolen GitLab authentication tokens. The Internet… First seen on securityaffairs.com Jump to article: securityaffairs.com/170068/data-breach/internet-archive-second-data-breach.html
-
New Critical GitLab Vulnerability Could Allow Arbitrary CI/CD Pipeline Execution
by
in SecurityNewsGitLab has released security updates for Community Edition (CE) and Enterprise Edition (EE) to address eight security flaws, including a critical bug … First seen on thehackernews.com Jump to article: thehackernews.com/2024/10/new-critical-gitlab-vulnerability-could.html
-
Patch Now: GitLab Fixes Major Vulnerabilities in All Versions
by
in SecurityNewsGitLab has announced the release of critical patches for its Community Edition (CE) and Enterprise Edition (EE) with versions 17.4.2, 17.3.5, and 17.2… First seen on thecyberexpress.com Jump to article: thecyberexpress.com/gitlab-critical-patches/
-
GitLab warns of critical arbitrary branch pipeline execution flaw
by
in SecurityNewsGitLab has released security updates to address multiple flaws in Community Edition (CE) and Enterprise Edition (EE), including a critical arbitrary b… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/gitlab-warns-of-critical-arbitrary-branch-pipeline-execution-flaw/
-
Exploit code for critical GitLab auth bypass flaw released (CVE-2024-45409)
by
in SecurityNewsIf you run a self-managed GitLab installation with configured SAML-based authentication and you haven’t upgraded it since mid-September, do it now, be… First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/10/09/exploit-cve-2024-45409/
-
Kritische Schwachstelle – CVSS 10 Gravierende Sicherheitslücke in GitLab-Server
by
in SecurityNewsFirst seen on security-insider.de Jump to article: www.security-insider.de/kritische-sicherheitsluecke-gitlab-aktualisierung-empfohlen-a-8b5682238205777cca84488338d6b379/
-
GitLab Patches: Severe SAML Authentication Bypass Flaw Fixed
by
in SecurityNewsA critical SAML authentication bypass flaw was recently identified in GitLab’s Community Edition (CE) and Enterprise Edition (EE). As of now, GitLab p… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/10/gitlab-patches-severe-saml-authentication-bypass-flaw-fixed/
-
GitLab Patches Critical SAML Authentication Bypass Flaw in CE and EE Editions
by
in SecurityNewsGitLab has released patches to address a critical flaw impacting Community Edition (CE) and Enterprise Edition (EE) that could result in an authentica… First seen on thehackernews.com Jump to article: thehackernews.com/2024/09/gitlab-patches-critical-saml.html
-
GitLab Warns of Max Severity Authentication Bypass Bug
by
in SecurityNewsFirst seen on darkreading.com Jump to article: www.darkreading.com/application-security/gitlab-warns-max-severity-authentication-bypass-bug
-
Sicherheitspatch: Gitlab behebt Lücken in Serverversionen
by
in SecurityNews
Tags: gitlabAngreifer konnten Code einschleusen, fremde Konten übernehmen und den Server außer Gefecht setzen. Admins selbst gehosteter Instanzen sollten patchen…. First seen on heise.de Jump to article: www.heise.de/news/Sicherheitspatch-Gitlab-behebt-Luecken-in-Serverversionen-9866401.html
-
GitLab Urges Organization to Patch for Authentication Bypass Vulnerability
by
in SecurityNewsGitLab has issued an urgent call to action for organizations using its platform to patch a critical authentication bypass vulnerability. This security… First seen on gbhackers.com Jump to article: gbhackers.com/gitlab-urges-organization/
-
GitLab releases fix for critical SAML authentication bypass flaw
by
in SecurityNewsGitLab has released security updates to address a critical SAML authentication bypass vulnerability impacting self-managed installations of the GitLab… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/gitlab-releases-fix-for-critical-saml-authentication-bypass-flaw/
-
GitLab Patches Critical Authentication Bypass Vulnerability
by
in SecurityNewsGitLab has patched a critical-severity SAML authentication bypass affecting both Community Edition (CE) and Enterprise Edition (EE) instances. The pos… First seen on securityweek.com Jump to article: www.securityweek.com/gitlab-patches-critical-authentication-bypass-vulnerability/
-
GitLab fixed a critical flaw in GitLab CE and GitLab EE
by
in SecurityNewsGitLab addressed multiple vulnerabilities impacting GitLab CE/EE, including a critical pipeline execution issue. GitLab released security patches for … First seen on securityaffairs.com Jump to article: securityaffairs.com/168375/security/gitlab-ce-ee-critical-issue.html
-
GitLab patches bug that could expose a CI/CD pipeline to supply chain attack
by
in SecurityNewsFirst seen on scmagazine.com Jump to article: www.scmagazine.com/news/gitlab-patches-bug-that-could-expose-a-cicd-pipeline-to-supply-chain-attack
-
GitLab Updates Resolve Critical Pipeline Execution Vulnerability
by
in SecurityNewsGitLab has released security updates to resolve multiple vulnerabilities in GitLab CE/EE, including a critical-severity pipeline execution flaw. The p… First seen on securityweek.com Jump to article: www.securityweek.com/gitlab-updates-resolve-critical-pipeline-execution-vulnerability/
-
GitLab warns of critical pipeline execution vulnerability
by
in SecurityNewsGitLab has released critical updates to address multiple vulnerabilities, the most severe of them (CVE-2024-6678) allowing an attacker to trigger pipe… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/gitlab-warns-of-critical-pipeline-execution-vulnerability/