Improper Permission Validation Allows Creation of Model Experiments in Public Projects in GitLab

Improper Permission Validation Allows Creation of Model Experiments in Public Projects in GitLab

CVE-2023-4018 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

An issue has been discovered in GitLab affecting all versions starting from 16.2 before 16.2.5, all versions starting from 16.3 before 16.3.1. Due to improper permission validation it was possible to create model experiments in public projects.

Learn more about our Web Application Penetration Testing UK.