Security Advisory

CVE-2023-3950

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-09-01 10:30:46

Last updated 2026-05-06 04:05:52

Assigner GitLab

State PUBLISHED

Description

An information disclosure issue in GitLab EE affecting all versions from 16.2 prior to 16.2.5, and 16.3 prior to 16.3.1 allowed other Group Owners to see the Public Key for a Google Cloud Logging audit event streaming destination, if configured. Owners can now only write the key, not read it.

← Browse all CVEs View on cve.org ↗