CVE-2022-1417 log
| Source |
|
| Severity | Medium |
| Remote | Unknown |
| Type | Authentication bypass |
| Description | Improper access control in GitLab CE/EE affecting all versions starting from 8.12 before 14.8.6, all versions starting from 8.13 before 14.9.4, and all versions starting from 8.14 before 14.10.1 allows non-project members to access contents of Project Members-only Wikis via malicious CI jobs. |
| Group | Package | Affected | Fixed | Severity | Status | Ticket |
|---|---|---|---|---|---|---|
| AVG-2696 | gitlab | 14.10-1 | 14.10.2-1 | High | Fixed |