CVE

CVE-2021-39872

admin

CVE-2021-39872

In all versions of GitLab CE/EE since version 14.1, an improper access control vulnerability allows users with expired password to still access GitLab through git and API through access tokens acquired before password expiration.

Source: CVE-2021-39872

Exit mobile version