An issue has been discovered in GitLab EE/CE that could allow an attacker to track users browsing activities, potentially leading to full account take-over, affecting all versions from 16.6 before 17.9.7, 17.10 before 17.10.5, and 17.11 before 17.11.1.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Gitlab | Gitlab | 16.6.0 (including) | 17.9.7 (excluding) |
Gitlab | Gitlab | 17.10.0 (including) | 17.10.5 (excluding) |
Gitlab | Gitlab | 17.11.0 (including) | 17.11.0 (including) |
Gitlab | Ubuntu | esm-apps/xenial | * |