https://vulnerability.circl.lu/sightings/feedMost recent sightings.2026-05-10T07:40:02.542152+00:00Vulnerability-Lookupinfo@circl.lupython-feedgenContains only the most 10 recent sightings.https://vulnerability.circl.lu/sighting/66913e9e-76ae-43d1-ac8b-232495290878/export66913e9e-76ae-43d1-ac8b-2324952908782026-05-10T07:40:02.934166+00:00Automation userhttp://cve.circl.lu/user/automation{"uuid": "66913e9e-76ae-43d1-ac8b-232495290878", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-8754", "type": "seen", "source": "https://t.me/cvedetector/5497", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-8754 - GitLab JWT Authentication Account Squatting Vulnerability\", \n \"Content\": \"CVE ID : CVE-2024-8754 \nPublished : Sept. 12, 2024, 5:15 p.m. | 32\u00a0minutes ago \nDescription : An issue has been discovered in GitLab EE/CE affecting all versions from 16.9.7 prior to 17.1.7, 17.2 prior to 17.2.5, and 17.3 prior to 17.3.2. An improper input validation error allows attacker to squat on accounts via linking arbitrary unclaimed provider identities when JWT authentication is configured. \nSeverity: 6.4 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"12 Sep 2024\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-09-12T19:47:59.000000Z"}2024-09-12T19:47:59+00:00