Improper Authorization Vulnerability in Gitlab Community Edition 10.3 Allows Unauthorized User Login via Oauth Sign-In

Improper Authorization Vulnerability in Gitlab Community Edition 10.3 Allows Unauthorized User Login via Oauth Sign-In

CVE-2017-0926 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:P/A:P

Gitlab Community Edition version 10.3 is vulnerable to an improper authorization issue in the Oauth sign-in component resulting in unauthorized user login.

Learn more about our User Device Pen Test.