Security Advisory

CVE-2023-1204

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-05-03 00:00:00

Last updated 2025-01-30 15:23:14

Assigner GitLab

State PUBLISHED

Description

An issue has been discovered in GitLab CE/EE affecting all versions starting from 10.1 before 15.10.8, all versions starting from 15.11 before 15.11.7, all versions starting from 16.0 before 16.0.2. A user could use an unverified email as a public email and commit email by sending a specifically crafted request on user update settings.

← Browse all CVEs View on cve.org ↗