An issue was discovered in GitLab CE/EE affecting all versions starting from 17.0 prior to 17.0.4 and from 17.1 prior to 17.1.2 where a Guest user with admin_push_rules
permission may have been able to create project-level deploy tokens.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Gitlab | Gitlab | 17.0.0 (including) | 17.0.4 (excluding) |
Gitlab | Gitlab | 17.1.0 (including) | 17.1.2 (excluding) |