CVE-2017-0927

CVE-2017-0927

Vendor Gitlab

Product GitLab Community and Enterprise Editions

Weakness CWE-285

Published March 21, 2018

Last update August 5, 2024

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

Gitlab Community Edition version 10.3 is vulnerable to an improper authorization issue in the deployment keys component resulting in unauthorized use of deployment keys by guest users.

Key dates

02Disclosure timeline

March 21, 2018 CVE published

August 5, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2017-0927

Related vulnerabilities

Identifiers

CVE CVE-2017-0927

CWE CWE-285

Affected versions

Vendor Gitlab

Product GitLab Community and Enterprise Editions

Affected 8.10.6 - 10.1.5 Fixed in 10.1.6

Vendor Gitlab

Product GitLab Community and Enterprise Editions

Affected 10.2.0 - 10.2.5 Fixed in 10.2.6

Vendor Gitlab

Product GitLab Community and Enterprise Editions

Affected 10.3.0 - 10.3.3 Fixed in 10.3.4

01Description

02Disclosure timeline

03References

04Related CVE