Get Started

GitLab: Update to Fix Access Token Vulnerability

by the Hossted team
13.08.2024

In GitLab versions from 13.9 before 17.0.6, from 17.1 before 17.1.4, and 17.2 before 17.2.2 a high severity vulnerability CVE-2024-7554 was detected. This allows attackers to potentially steal sensitive authentication information by exploiting the logging of access tokens during specific API requests. To fix this problem, users should upgrade GitLab to versions 17.0.6, 17.1.4 or 17.2.2. For more details, visit https://nvd.nist.gov/vuln/detail/CVE-2024-7554.

Related articles
OSSpedia
DevOps 2 Apr 2024 Maximize GitLab OSS: Powering DevOps with Open-Source Genius Developer Tools GIT
DevOps 14 Nov 2024 Gitlab: XSS Attacks in Specific Versions Developer Tools GIT