GitLab has released fixes for a critical security flaw (CVE-2024-0402) in its Community and Enterprise Editions. The vulnerability (CVSS score 9.9), allowed authenticated users in certain versions to write files to arbitrary locations on the server while creating a workspace. GitLab also addressed four medium-severity flaws. This update follows recent fixes for two critical shortcomings (CVE-2023-7028, CVSS score: 10.0). Advise for users is to upgrade promptly.
You Might Be Interested In
- GenAI Contributes to a Spike in BEC Attacks
- Urgent Patch: VMware Escapade Flaws Addressed
- The “Lucifer” Botnet Intensifies Attacks on Apache Servers
- UnitedHealth Group: Another Extorted Ransom
- ChatGPT Abuse Plans Exposed in Dark Web Posts
- Upgrade Chrome Immediately! Google Fixes Potential Drive-by Vulnerability