Gitlab Account Takeover

GitLab Community & Enterprise Editions Account Takeover

CVE-2023-7028

Vulnerability

Critical vulnerabilities have been found in GitLab Community & Enterprise Editions. The most severe vulnerability, permits accounts takeover through password reset to an unauthenticated email address. There are reports of this being exploited in the wild.

Vulnerable Versions

  1. 16.1 to 16.1.5
  2. 16.2 to 16.2.8
  3. 16.3 to 16.3.6
  4. 16.4 to 16.4.4
  5. 16.5 to 16.5.5
  6. 16.6 to 16.6.3
  7. 16.7 to 16.7.1

Remediation

Update to the latest version, and as with any login make sure MFA is enabled on user accounts.

If you're unsure of how to check if your internal systems are vulnerable, check out our internal network penetration testing services.