← back
CVE-2024-0402

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in GitLab

CVSS 9.9 CRITICALEPSS 3.3%CWE-22
An issue has been discovered in GitLab CE/EE affecting all versions from 16.0 prior to 16.6.6, 16.7 prior to 16.7.4, and 16.8 prior to 16.8.1 which allows an authenticated user to write files to arbitrary locations on the GitLab server while creating a workspace.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Affected products
GitLab · GitLab
public PoCs found1
githubgithub.com/doyensec/malicious-devfile-registry15
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://about.gitlab.com/releases/2024/01/25/critical-security-release-gitlab-16-8-1-released/https://gitlab.com/gitlab-org/gitlab/-/issues/437819