CVE-2024-1299
- Reference to the description:
- Description:
- A privilege escalation vulnerability was discovered in GitLab affecting versions 16.8 prior to 16.8.4 and 16.9 prior to 16.9.2. It was possible for a user with custom role of `manage_group_access_tokens` to rotate group access tokens with owner privileges.
- Last updated date:
- 12/11/2024
- Type:
- exploit
- Confidence:
- HIGH
- Date of publishing:
- 12/11/2024
- Reference url to background