Improper Permission Check in GitLab Allows Unauthorized Timestamp Modification for Issue Creation/Update

Improper Permission Check in GitLab Allows Unauthorized Timestamp Modification for Issue Creation/Update

CVE-2021-22208 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

An issue has been discovered in GitLab affecting versions starting with 13.5 up to 13.9.7. Improper permission check could allow the change of timestamp for issue creation or update.

Learn more about our Web Application Penetration Testing UK.