CVE-2024-12619
- Source
- https://cve.org/CVERecord?id=CVE-2024-12619
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-12619.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2024-12619
- Aliases
- Downstream
- Published
- 2025-03-28T10:02:13.406Z
- Modified
- 2026-04-10T05:08:28.492688Z
- Severity
-
- 5.2 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:L/A:N CVSS Calculator
- Summary
- Insufficient Granularity of Access Control in GitLab
- Details
-
An issue has been discovered in GitLab CE/EE affecting all versions from 16.0 before 17.8.6, 17.9 before 17.9.3, and 17.10 before 17.10.1, allowing internal users to gain unauthorized access to internal projects.
- Database specific
{ "cna_assigner": "GitLab", "cwe_ids": [ "CWE-1220" ], "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/12xxx/CVE-2024-12619.json" }- References