Security Advisory

CVE-2022-2533

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-10-17 00:00:00

Last updated 2025-05-13 19:32:13

Assigner GitLab

State PUBLISHED

Description

An issue has been discovered in GitLab affecting all versions starting from 12.10 before 15.1.6, all versions starting from 15.2 before 15.2.4, all versions starting from 15.3 before 15.3.2. GitLab was not performing correct authentication with some Package Registries when IP address restrictions were configured, allowing an attacker already in possession of a valid Deploy Token to misuse it from any location.

← Browse all CVEs View on cve.org ↗