Security Advisory

CVE-2023-5106

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-10-02 11:49:56

Last updated 2026-04-07 04:06:43

Assigner GitLab

State PUBLISHED

Description

An issue has been discovered in Ultimate-licensed GitLab EE affecting all versions starting 13.12 prior to 16.2.8, 16.3.0 prior to 16.3.5, and 16.4.0 prior to 16.4.1 that could allow an attacker to impersonate users in CI pipelines through direct transfer group imports.

← Browse all CVEs View on cve.org ↗