2021-03-24 16:42:06
GitLab
PUBLISHED
An authorization issue in GitLab CE/EE version 9.4 and up allowed a group maintainer to modify group CI/CD variables which should be restricted to group owners