CVE-2024-7404

Vulnerability Description

An issue was discovered in GitLab CE/EE affecting all versions starting from 17.2 prior to 17.3.7, starting from 17.4 prior to 17.4.4 and starting from 17.5 prior to 17.5.2, which could have allowed an attacker gaining full API access as the victim via the Device OAuth flow.

Vulnerability Details

Published Date

November 14, 2024

Last Modified

December 12, 2024

Source

NVD

CVE-2024-7404

Vulnerability Description

Vulnerability Details

Discussion (0)

Add Comment