GitLab Patches Critical SAML Authentication Bypass Flaw in CE and EE Editions

Updated on September 19, 2024

GitLab has released patches to address a critical flaw impacting Community Edition (CE) and Enterprise Edition (EE) that could result in an authentication bypass.
The vulnerability is rooted in the ruby-saml library (CVE-2024-45409, CVSS score: 10.0), which could allow an attacker to log in as an arbitrary user within the vulnerable system. It was addressed by the maintainers last week.
The…

Read the rest of the story at Read More

Source: The Hacker News

January 7, 2025 Uncategorized

Farewell to the Fallen: The Cybersecurit...

March 4, 2025 Uncategorized

How New AI Agents Will Transform Credent...

February 21, 2025 Uncategorized

GitLab Patches Critical SAML Authentication Bypass Flaw in CE and EE Editions

Related posts

Farewell to the Fallen: The Cybersecurit...

How New AI Agents Will Transform Credent...

Cisco Confirms Salt Typhoon Exploited CV...

Leave a Comment Cancel reply

Recent News

Wormable AirPlay Flaws Enable Zero-Click RCE on Apple Devices via Public Wi-Fi

Commvault CVE-2025-34028 Added to CISA KEV After Active Exploitation Confirmed

⚡ Weekly Recap: Nation-State Hacks, Spyware Alerts, Deepfake Malware, Supply Chain Backdoors

Perfection is a Myth. Leverage Isn’t: How Small Teams Can Secure Their Google Workspace

Golden Chickens Deploy TerraStealerV2 to Steal Browser Credentials and Crypto Wallet Data

Malicious Go Modules Deliver Disk-Wiping Linux Malware in Advanced Supply Chain Attack

Iranian Hackers Maintain 2-Year Access to Middle East CNI via VPN Flaws and Malware

U.S. Charges Yemeni Hacker Behind Black Kingdom Ransomware Targeting 1,500 Systems

TikTok Slammed With €530 Million GDPR Fine for Sending E.U. Data to China

How to Automate CVE and Vulnerability Advisory Response with Tines