SB2024020821 - Multiple vulnerabilities in GitLab Community Edition (CE) and Enterprise Edition (EE)
Published: February 8, 2024
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 4 secuirty vulnerabilities.
1) Improper access control (CVE-ID: CVE-2024-1250)
The vulnerability allows a remote user to gain unauthorized access to otherwise restricted functionality.
The vulnerability exists due to improper access restrictions. A remote administrator can create group access tokens with Owner privileges and gain elevated privileges on the system.
2) Improper access control (CVE-ID: CVE-2023-6840)
The vulnerability allows a remote user to gain unauthorized access to otherwise restricted functionality.
The vulnerability exists due to improper access restrictions within block_branch_modification setting. A remote administrator can change the name of a protected branch that bypasses the security policy added to block MR.
3) Incorrect Regular Expression (CVE-ID: CVE-2023-6386)
The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to insufficient input validation when processing regular expressions in CI/CD Pipeline Editor while verifying Pipeline syntax. A remote user can pass specially crafted data to the application and perform regular expression denial of service (ReDos) attack.
4) Resource exhaustion (CVE-ID: CVE-2024-1066)
The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to application does not properly control consumption of internal resources when using GraphQL "vulnerabilitiesCountByDay". A remote user can trigger resource exhaustion and perform a denial of service (DoS) attack.
Remediation
Install update from vendor's website.