CVE

CVE-2021-39904

admin

CVE-2021-39904

An Improper Access Control vulnerability in the GraphQL API in GitLab CE/EE since version 13.1 allows a Merge Request creator to resolve discussions and apply suggestions after a project owner has locked the Merge Request

Source: CVE-2021-39904

Exit mobile version