{"uuid": "fbad95e6-65cd-416b-a70f-b3d08923bb8c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-6385", "type": "seen", "source": "https://t.me/KomunitiSiber/2235", "content": "GitLab Patches Critical Flaw Allowing Unauthorized Pipeline Jobs\nhttps://thehackernews.com/2024/07/gitlab-patches-critical-flaw-allowing.html\n\nGitLab has shipped another round of updates to close out security flaws in its software development platform, including a critical bug that allows an attacker to run pipeline jobs as an arbitrary user.\nTracked as CVE-2024-6385, the vulnerability carries a CVSS score of 9.6 out of a maximum of 10.0.\n\"An issue was discovered in GitLab CE/EE affecting versions 15.8 prior to 16.11.6, 17.0 prior to", "creation_timestamp": "2024-07-11T08:50:45.000000Z"}