New Security Vulnerability Affects Thousands of Self-Managed GitLab Instances


Researchers have revealed details of a new security vulnerability in GitLab, an open-source DevOps platform, that might possibly allow a remote, unauthenticated attacker to retrieve user-related data.

The medium-severity bug, tracked as CVE-2021-4191 (CVSS score: 5.3), affects all versions of GitLab Community Edition and Enterprise Edition beginning with 13.0 and all versions beginning with 14.4 and previous to 14.8.

Read More…