Information disclosure in GitLab Enterprise Edition - CVE-2023-4002

 

Information disclosure in GitLab Enterprise Edition - CVE-2023-4002

Published: August 2, 2023


Vulnerability identifier: #VU78865
CSH Severity: Medium
CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Green
CVE-ID: CVE-2023-4002
CWE-ID: CWE-200
Exploitation vector: Remote access
Exploit availability: No public exploit available
Vendor: GitLab, Inc
Affected software:
GitLab Enterprise Edition

Detailed vulnerability description

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists due to the "securityPolicyProjectAssign" mutation does not authorize security policy project ID. A remote user can link any security policy project by its ID to projects or groups the user has access to and reveal the security projects's configured security policies.


How to mitigate CVE-2023-4002

Install updates from vendor's website.

Sources