GitLab Released Emergency Fix For Critical Vulnerability - Update Now!
GitLab has released an emergency update to address a critical path traversal vulnerability (CVE-2023-2825) with a CVSS score of 10.0. The flaw affected GitLab Community Edition (CE) and Enterprise Edition (EE) version 16.0.0 and was patched with the release of version 16.0.1 for GitLab CE/EE. The vulnerability allowed a remote unauthenticated attacker to access files in a public project, potentially enabling them to read arbitrary files on the server when an attachment exists in a public project nested within at least five groups. Users running GitLab installations, particularly version 16.0.0, are urged to update their devices with the patched release as soon as possible. CVEs: CVE-2023-2825 [View Article](https://latesthackingnews.com/2023/05/29/gitlab-released-emergency-fix-for-critical-vulnerability-update-now/)