Security Advisory

CVE-2024-0410

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-02-21 23:30:59

Last updated 2025-11-20 04:11:49

Assigner GitLab

State PUBLISHED

Description

An authorization bypass vulnerability was discovered in GitLab affecting versions 15.1 prior to 16.7.6, 16.8 prior to 16.8.3, and 16.9 prior to 16.9.1. A developer could bypass CODEOWNERS approvals by creating a merge conflict.

← Browse all CVEs View on cve.org ↗