GitLab urges users to patch critical vulnerability
GitLab wants users to urgently install an update for versions 15.1, 15.2, and 15.3 of its community and enterprise edition to address a flaw attackers could exploit to remotely execute commands via its GitHub import tool.
The vulnerability is tracked as CVE-2022-2884 and has been assigned a Common Vulnerability Scoring System (CVSS) v3 of 9.9 out of 10.
GitLab wants users to urgently install an update for versions 15.1, 15.2, and 15.3 of its community and enterprise edition to address a flaw attackers could exploit to remotely execute commands via its GitHub import tool.
The vulnerability is tracked as CVE-2022-2884 and has been assigned a Common Vulnerability Scoring System (CVSS) v3 of 9.9 out of 10.