VDB
CVE-2023-3932
CVE-2023-3932
PUBLISHED
An issue has been discovered in GitLab EE affecting all versions starting from 13.12 before 16.0.8, all versions starting from 16.1 before 16.1.3, all versions starting from 16.2 before 16.2.2. It was possible for an attacker to run pipeline jobs as an arbitrary user via scheduled security scan policies.
EPSS 0.08% · 23.0th percentile
Risk Scores
EPSS Score
0.08%
23.0th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Bitnami | gitlab | 13.12.0, 16.1.0, 16.2.0 |
| Bitnami | gitlab | 13.12.0, 16.2.0, 16.1.0 |
Timeline
- Aug 1, 2023 CVE Published
- Aug 2, 2023 CVE Updated
- Aug 3, 2023 EPSS Score
- Sep 6, 2023 EPSS Score
- Oct 10, 2023 EPSS Score
- Nov 12, 2023 EPSS Score
- Dec 16, 2023 EPSS Score
- Jan 19, 2024 EPSS Score
- Feb 22, 2024 EPSS Score
- Mar 27, 2024 EPSS Score
- Apr 30, 2024 EPSS Score
- Jun 2, 2024 EPSS Score