Tag: gitlab
-
GitLab Issues Critical Patch Releases: Versions 17.3.2, 17.2.5, and 17.1.7 Address Key Vulnerabilities
by
in SecurityNewsGitLab has released critical patch updates across its Community Edition (CE) and Enterprise Edition (EE) to address security vulnerabilities and bugs…. First seen on thecyberexpress.com Jump to article: thecyberexpress.com/gitlab-critical-patch-updates/
-
GitLab users cautiously optimistic on Datadog DevSecOps deal
by
in SecurityNews
Tags: gitlabDatadog is reportedly a suitor for GitLab; existing users understand the rationale for such a deal, but key questions must be answered before they’d a… First seen on techtarget.com Jump to article: www.techtarget.com/searchitoperations/news/366596593/GitLab-users-cautiously-optimistic-on-Datadog-DevSecOps-deal
-
Number of incidents affecting GitHub, Bitbucket, GitLab, and Jira continues to rise
by
in SecurityNewsOutages, human errors, cyberattacks, data breaches, ransomware, security vulnerabilities, and, as a result, data loss are the reality that DevSecOps t… First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/08/07/github-bitbucket-gitlab-jira-incidents/
-
Angreifer können Code auf GitLab manipulieren – Updates für sechs Schwachstellen in GitLab verfügbar
by
in SecurityNewsFirst seen on security-insider.de Jump to article: www.security-insider.de/update-kritische-schwachstellen-gitlab-software-projekte-a-1459007e7212b8828802a203897428ae/
-
Sicherheitslücken GitLab: Angreifer können Softwareentwicklung manipulieren
by
in SecurityNews
Tags: gitlabFirst seen on heise.de Jump to article: www.heise.de/news/Sicherheitsluecken-GitLab-Angreifer-koennen-Softwareentwicklung-manipulieren-9799190.html
-
GitLab Sends Users Scrambling Again With New CI/CD Pipeline Takeover Vuln
by
in SecurityNews
Tags: gitlabFirst seen on darkreading.com Jump to article: www.darkreading.com/application-security/-gitlab-sends-users-scrambling-again-with-new-ci-cd-pipeline-takeover-vuln
-
Vulnerability Recap 7/1/24 Apple, GitLab, AI Platforms at Risk
by
in SecurityNewsFirst seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/threats/vulnerability-recap-july-1-2024/
-
GitLab Patches Second Critical Pipeline Vulnerability In Last Month
by
in SecurityNewsFirst seen on packetstormsecurity.com Jump to article: packetstormsecurity.com/news/view/36100/GitLab-Patches-Second-Critical-Pipeline-Vulnerability-In-Last-Month.html
-
GitLab Ships Update for Critical Pipeline Execution Vulnerability
by
in SecurityNewsGitLab issues an advisory for a critical-severity vulnerability that allows an attacker to trigger a pipeline as another user. The post GitLab Ships U… First seen on securityweek.com Jump to article: www.securityweek.com/gitlab-ships-update-for-critical-pipeline-execution-vulnerability/
-
GitLab patches 2nd critical pipeline vulnerability in last month
by
in SecurityNewsFirst seen on scmagazine.com Jump to article: www.scmagazine.com/news/gitlab-patches-2nd-critical-pipeline-vulnerability-in-last-month
-
Severe vulnerabilities addressed by GitLab, others
by
in SecurityNewsFirst seen on scmagazine.com Jump to article: www.scmagazine.com/brief/severe-vulnerabilities-addressed-by-gitlab-others
-
Critical bug lets attackers run pipelines as other users
by
in SecurityNewsGitLab warned today that a critical vulnerability in its product’s GitLab Community and Enterprise editions allows attackers to run pipeline jobs as a… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/gitlab-warns-of-critical-bug-that-lets-attackers-run-pipelines-as-an-arbitrary-user/
-
GitLab Authentication Bypass Vulnerability (CVE-2024-6385) Notification
by
in SecurityNewsOverview Recently, NSFOCUS CERT detected that GitLab issued a security announcement and fixed the identity bypass vulnerability (CVE-2024-6385) in Git… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/07/gitlab-authentication-bypass-vulnerability-cve-2024-6385-notification/
-
Update für kritische Schwachstelle in GitLab verfügbar – CSS-Angriffe auf CI-Pipelines in GitLab
by
in SecurityNewsFirst seen on security-insider.de Jump to article: www.security-insider.de/gitlab-sicherheitsaktualisierung-ci-pipelines-a-f5a11b629de2797d1b7e2c876034012f/
-
GitLab Releases Patch for Critical CI/CD Pipeline Vulnerability and 13 Others
by
in SecurityNewsGitLab has released security updates to address 14 security flaws, including one critical vulnerability that could be exploited to run continuous inte… First seen on thehackernews.com Jump to article: thehackernews.com/2024/06/gitlab-releases-patch-for-critical-cicd.html
-
Bitte patchen! Security-Update behebt kritische Schwachstelle in GitLab
by
in SecurityNewsEine Reihe von Schwachstellen ermöglichen es in GitLab, CI-Pipelines als anderer User zu starten oder Cross-Site-Scripting über Commit Notes einzuschl… First seen on heise.de Jump to article: www.heise.de/news/Bitte-patchen-Security-Update-behebt-kritische-Schwachstelle-in-GitLab-9780254.html
-
Critical GitLab Bug Threatens Software Development Pipelines
by
in SecurityNewsFirst seen on darkreading.com Jump to article: www.darkreading.com/application-security/critical-gitlab-bug-threatens-software-development-pipelines
-
GitLab Security Updates Patch 14 Vulnerabilities
by
in SecurityNewsFirst seen on packetstormsecurity.com Jump to article: packetstormsecurity.com/news/view/36044/GitLab-Security-Updates-Patch-14-Vulnerabilities.html
-
Accountübernahme nach 1-Klick-Attacke möglich
by
in SecurityNews
Tags: gitlabFirst seen on heise.de Jump to article: www.heise.de/news/GitLab-Accountuebernahme-nach-1-Klick-Attacke-moeglich-9730570.html
-
Patch GitLab vuln without delay, users warned
by
in SecurityNewsFirst seen on computerweekly.com Jump to article: www.computerweekly.com/news/366583457/Patch-GitLab-vuln-without-delay-users-warned
-
Dringend patchen: Gitlab-Schwachstelle ermöglicht Übernahme fremder Konten
by
in SecurityNewsFirst seen on golem.de Jump to article: www.golem.de/news/dringend-patchen-gitlab-schwachstelle-ermoeglicht-uebernahme-fremder-konten-2405-185399.html
-
Top 5 CVEs and Vulnerabilities of May 2024
by
in SecurityNewsMay brought a fresh batch of security headaches. This month, we’re focusing on critical vulnerabilities in widely used software like Apache, Gitlab, a… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/06/top-5-cves-and-vulnerabilities-of-may-2024/
-
Vulnerability Recap 5/27/24 Google, Microsoft GitLab Fixes
by
in SecurityNewsFirst seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/threats/vulnerability-recap-may-27-2024/
-
Sicherheit bei Benutzerkonten von GitLab gefährdet – Massive Schwachstellen bei GitLab
by
in SecurityNewsFirst seen on security-insider.de Jump to article: www.security-insider.de/gitlab-sicherheitsupdates-cve-2024-4835-cross-site-scripting-luecke-behoben-a-f523be78216232d14d46cf8c433aa54a/
-
Maximum-severity GitLab flaw allowing account hijacking under active exploitation
by
in SecurityNewsFirst seen on arstechnica.com Jump to article: arstechnica.com/
-
Several GitLab vulnerabilities addressed
by
in SecurityNewsFirst seen on scmagazine.com Jump to article: www.scmagazine.com/brief/several-gitlab-vulnerabilities-addressed
-
An XSS flaw in GitLab allows attackers to take over accounts
by
in SecurityNewsGitLab addressed a high-severity cross-site scripting (XSS) vulnerability that allows unauthenticated attackers to take over user accounts. GitLab fix… First seen on securityaffairs.com Jump to article: securityaffairs.com/163649/hacking/gitlab-xss-flaw.html
-
High-severity GitLab flaw lets attackers take over accounts
by
in SecurityNewsGitLab patched a high-severity vulnerability that unauthenticated attackers could exploit to take over user accounts in cross-site scripting (XSS) att… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/high-severity-gitlab-flaw-lets-attackers-take-over-accounts/