CVE-2022-2307 log

Severity Low
Remote Yes
Type Unknown
gitlab allows a malicious Group Owner to retain a usable Group Access Token even after the Group is deleted, though the APIs usable by that token are limited
Group Package Affected Fixed Severity Status Ticket
AVG-2785 gitlab 15.2.0-1 15.2.1-1 Medium Fixed