LDAP Password Reset Vulnerability Affects GitLab CE/EE Versions
CVE-2024-1525
5.3MEDIUM
Summary
An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.1 before 16.7.6, all versions starting from 16.8 before 16.8.3, all versions starting from 16.9 before 16.9.1. Under some specialized conditions, an LDAP user may be able to reset their password using their verified secondary email address and sign-in using direct authentication with the reset password, bypassing LDAP.
Affected Version(s)
GitLab < 16.7.6
GitLab < 16.8.3
GitLab < 16.9.1
CVSS V3.1
Score:
5.3
Severity:
MEDIUM
Confidentiality:
None
Integrity:
High
Availability:
None
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published.
Collectors
NVD DatabaseMitre Database
Credit
This vulnerability was discovered internally by a GitLab team member, [Drew Blessing](https://gitlab.com/dblessing)