Get Started

Gitlab: Security Token Theft via Kubernetes Agent Server (KAS)

by the Hossted team
13.06.2024

In GitLab CE/EE versions from 13.11 before 16.10.6, from 16.11 before 16.11.3, from 17.0 before 17.0.1, a medium severity vulnerability CVE-2023-7045 was detected. An attacker could exploit this vulnerability to steal security tokens through the Kubernetes Agent Server (KAS). For more details, visit https://avd.aquasec.com/nvd/2023/cve-2023-7045/.

Related articles
OSSpedia
DevOps 2 Apr 2024 Maximize GitLab OSS: Powering DevOps with Open-Source Genius Developer Tools GIT
DevOps 14 Nov 2024 Gitlab: XSS Attacks in Specific Versions Developer Tools GIT