mirror of
https://github.com/0xMarcio/cve.git
synced 2026-05-25 20:57:49 +02:00
0xMarcio
1016 B
1016 B
CVE-2022-2227
Description
Improper access control in the runner jobs API in GitLab CE/EE affecting all versions prior to 14.10.5, 15.0 prior to 15.0.4, and 15.1 prior to 15.1.1 allows a previous maintainer of a project with a specific runner to access job and project meta data under certain conditions
POC
Reference
Github
No PoCs found on GitHub currently.