CVE-2021-39930

Publication date

2021-12-13 15:48:02

Family

GitLab

State

PUBLISHED

Description

Missing authorization in GitLab EE versions between 12.4 and 14.3.6, between 14.4.0 and 14.4.4, and between 14.5.0 and 14.5.2 allowed an attacker to access a users custom project and group templates