muthu_prakash

1 exploit Active since Dec 2021
CVE-2021-39945 WRITEUP LOW WRITEUP
GitLab 9.4.0-14.3.5, 14.4.0-14.4.3, 14.5.0-14.5.1 - Incorrect Authorization in Merge Request Approval
Improper access control in the GitLab CE/EE API affecting all versions starting from 9.4 before 14.3.6, all versions starting from 14.4 before 14.4.4, all versions starting from 14.5 before 14.5.2, allows an author of a Merge Request to approve the Merge Request even after having their project access revoked
CVSS 2.7