2023-04-28 00:00:00
mitre
PUBLISHED
GitLab::API::v4 through 0.26 does not verify TLS certificates when connecting to a GitLab server, enabling machine-in-the-middle attacks.