Tag: gitlab
-
GitLab Patches HTML Injection Flaw Leads to XSS Attacks
GitLab has announced the release of critical security updates for its Community Edition (CE) and Enterprise Edition (EE). The updates address a high-s… First seen on gbhackers.com Jump to article: gbhackers.com/gitlab-patches-html-injection-flaw/
-
Internet Archive was breached twice in a month
by
in SecurityNewsThe Internet Archive was breached again, attackers hacked its Zendesk email support platform through stolen GitLab authentication tokens. The Internet… First seen on securityaffairs.com Jump to article: securityaffairs.com/170068/data-breach/internet-archive-second-data-breach.html
-
New Critical GitLab Vulnerability Could Allow Arbitrary CI/CD Pipeline Execution
by
in SecurityNewsGitLab has released security updates for Community Edition (CE) and Enterprise Edition (EE) to address eight security flaws, including a critical bug … First seen on thehackernews.com Jump to article: thehackernews.com/2024/10/new-critical-gitlab-vulnerability-could.html
-
Patch Now: GitLab Fixes Major Vulnerabilities in All Versions
by
in SecurityNewsGitLab has announced the release of critical patches for its Community Edition (CE) and Enterprise Edition (EE) with versions 17.4.2, 17.3.5, and 17.2… First seen on thecyberexpress.com Jump to article: thecyberexpress.com/gitlab-critical-patches/
-
GitLab warns of critical arbitrary branch pipeline execution flaw
by
in SecurityNewsGitLab has released security updates to address multiple flaws in Community Edition (CE) and Enterprise Edition (EE), including a critical arbitrary b… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/gitlab-warns-of-critical-arbitrary-branch-pipeline-execution-flaw/
-
Exploit code for critical GitLab auth bypass flaw released (CVE-2024-45409)
by
in SecurityNewsIf you run a self-managed GitLab installation with configured SAML-based authentication and you haven’t upgraded it since mid-September, do it now, be… First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/10/09/exploit-cve-2024-45409/
-
Kritische Schwachstelle – CVSS 10 Gravierende Sicherheitslücke in GitLab-Server
by
in SecurityNewsFirst seen on security-insider.de Jump to article: www.security-insider.de/kritische-sicherheitsluecke-gitlab-aktualisierung-empfohlen-a-8b5682238205777cca84488338d6b379/
-
GitLab Patches: Severe SAML Authentication Bypass Flaw Fixed
by
in SecurityNewsA critical SAML authentication bypass flaw was recently identified in GitLab’s Community Edition (CE) and Enterprise Edition (EE). As of now, GitLab p… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/10/gitlab-patches-severe-saml-authentication-bypass-flaw-fixed/
-
GitLab Patches Critical SAML Authentication Bypass Flaw in CE and EE Editions
by
in SecurityNewsGitLab has released patches to address a critical flaw impacting Community Edition (CE) and Enterprise Edition (EE) that could result in an authentica… First seen on thehackernews.com Jump to article: thehackernews.com/2024/09/gitlab-patches-critical-saml.html
-
GitLab Warns of Max Severity Authentication Bypass Bug
by
in SecurityNewsFirst seen on darkreading.com Jump to article: www.darkreading.com/application-security/gitlab-warns-max-severity-authentication-bypass-bug
-
Sicherheitspatch: Gitlab behebt Lücken in Serverversionen
by
in SecurityNews
Tags: gitlabAngreifer konnten Code einschleusen, fremde Konten übernehmen und den Server außer Gefecht setzen. Admins selbst gehosteter Instanzen sollten patchen…. First seen on heise.de Jump to article: www.heise.de/news/Sicherheitspatch-Gitlab-behebt-Luecken-in-Serverversionen-9866401.html
-
GitLab Urges Organization to Patch for Authentication Bypass Vulnerability
by
in SecurityNewsGitLab has issued an urgent call to action for organizations using its platform to patch a critical authentication bypass vulnerability. This security… First seen on gbhackers.com Jump to article: gbhackers.com/gitlab-urges-organization/
-
GitLab releases fix for critical SAML authentication bypass flaw
by
in SecurityNewsGitLab has released security updates to address a critical SAML authentication bypass vulnerability impacting self-managed installations of the GitLab… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/gitlab-releases-fix-for-critical-saml-authentication-bypass-flaw/
-
GitLab Patches Critical Authentication Bypass Vulnerability
by
in SecurityNewsGitLab has patched a critical-severity SAML authentication bypass affecting both Community Edition (CE) and Enterprise Edition (EE) instances. The pos… First seen on securityweek.com Jump to article: www.securityweek.com/gitlab-patches-critical-authentication-bypass-vulnerability/
-
GitLab fixed a critical flaw in GitLab CE and GitLab EE
by
in SecurityNewsGitLab addressed multiple vulnerabilities impacting GitLab CE/EE, including a critical pipeline execution issue. GitLab released security patches for … First seen on securityaffairs.com Jump to article: securityaffairs.com/168375/security/gitlab-ce-ee-critical-issue.html
-
GitLab patches bug that could expose a CI/CD pipeline to supply chain attack
by
in SecurityNewsFirst seen on scmagazine.com Jump to article: www.scmagazine.com/news/gitlab-patches-bug-that-could-expose-a-cicd-pipeline-to-supply-chain-attack
-
GitLab Updates Resolve Critical Pipeline Execution Vulnerability
by
in SecurityNewsGitLab has released security updates to resolve multiple vulnerabilities in GitLab CE/EE, including a critical-severity pipeline execution flaw. The p… First seen on securityweek.com Jump to article: www.securityweek.com/gitlab-updates-resolve-critical-pipeline-execution-vulnerability/
-
GitLab warns of critical pipeline execution vulnerability
by
in SecurityNewsGitLab has released critical updates to address multiple vulnerabilities, the most severe of them (CVE-2024-6678) allowing an attacker to trigger pipe… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/gitlab-warns-of-critical-pipeline-execution-vulnerability/
-
GitLab Issues Critical Patch Releases: Versions 17.3.2, 17.2.5, and 17.1.7 Address Key Vulnerabilities
by
in SecurityNewsGitLab has released critical patch updates across its Community Edition (CE) and Enterprise Edition (EE) to address security vulnerabilities and bugs…. First seen on thecyberexpress.com Jump to article: thecyberexpress.com/gitlab-critical-patch-updates/
-
GitLab users cautiously optimistic on Datadog DevSecOps deal
by
in SecurityNews
Tags: gitlabDatadog is reportedly a suitor for GitLab; existing users understand the rationale for such a deal, but key questions must be answered before they’d a… First seen on techtarget.com Jump to article: www.techtarget.com/searchitoperations/news/366596593/GitLab-users-cautiously-optimistic-on-Datadog-DevSecOps-deal
-
Number of incidents affecting GitHub, Bitbucket, GitLab, and Jira continues to rise
by
in SecurityNewsOutages, human errors, cyberattacks, data breaches, ransomware, security vulnerabilities, and, as a result, data loss are the reality that DevSecOps t… First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/08/07/github-bitbucket-gitlab-jira-incidents/
-
Angreifer können Code auf GitLab manipulieren – Updates für sechs Schwachstellen in GitLab verfügbar
by
in SecurityNewsFirst seen on security-insider.de Jump to article: www.security-insider.de/update-kritische-schwachstellen-gitlab-software-projekte-a-1459007e7212b8828802a203897428ae/
-
Sicherheitslücken GitLab: Angreifer können Softwareentwicklung manipulieren
by
in SecurityNews
Tags: gitlabFirst seen on heise.de Jump to article: www.heise.de/news/Sicherheitsluecken-GitLab-Angreifer-koennen-Softwareentwicklung-manipulieren-9799190.html
-
GitLab Sends Users Scrambling Again With New CI/CD Pipeline Takeover Vuln
by
in SecurityNews
Tags: gitlabFirst seen on darkreading.com Jump to article: www.darkreading.com/application-security/-gitlab-sends-users-scrambling-again-with-new-ci-cd-pipeline-takeover-vuln
-
Vulnerability Recap 7/1/24 Apple, GitLab, AI Platforms at Risk
by
in SecurityNewsFirst seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/threats/vulnerability-recap-july-1-2024/