Rewterz

R00TK1T’s Digital Onslaught: Unleashing Chaos on Pakistan

May 1, 2024
Rewterz

ANONYMOUS Group Initiates DDoS Attacks on Saudi Arabian Websites

May 1, 2024

Multiple GitLab Community Edition and Enterprise Edition Vulnerabilities

Severity

Medium

Analysis Summary

CVE-2024-4006 CVSS:4.3

GitLab Community Edition (CE) and Enterprise Edition (EE) could allow a remote authenticated attacker to obtain sensitive information, caused by a flaw in Personal Access Token scopes. By sending a specially crafted request, a remote attacker could exploit this vulnerability to obtain sensitive information.

CVE-2024-4024 CVSS:7.3

GitLab Community Edition (CE) and Enterprise Edition (EE) could allow a remote authenticated attacker to gain elevated privileges on the system. By using Bitbucket as an OAuth provider, an attacker could exploit this vulnerability to perform account takeover.

Impact

  • Privilege Escalation
  • Information Disclosure

Indicators of Compromise

CVE

  • CVE-2024-4006
  • CVE-2024-4024

Affected Vendors

GitLab

Affected Products

  • GitLab Community Edition 16.11.0
  • GitLab Community Edition 16.10.3
  • GitLab Community Edition 16.9.5
  • GitLab Enterprise Edition 16.9.5
  • GitLab Enterprise Edition 16.10.3
  • GitLab Enterprise Edition 16.11.0

Remediation

Refer to GitLab Website for patch, upgrade, or suggested workaround information.

GitLab Website

Reading this advisory was a good start.

Make it a habit.

Rewterz publishes threat advisories ahead of mainstream cybersecurity media, informed by an AI-Native Autonomous SOC that sees regional threat actor activity in real time. Subscribe to receive each new advisory as it publishes, plus a monthly Middle East threat landscape brief drawn from our own SOC telemetry. For teams evaluating their detection coverage, a 30-minute consultation with a senior analyst is also available, at your pace, when you're ready.