GitLab Fixes Password Reset Bug That Allows Account Takeover
Security Boulevard
JANUARY 16, 2024
GitLab is releasing a patch to fix a vulnerability in its email verification process that bad actors can exploit to reset user passwords and take over accounts. The flaw, CVE-2023-7028, was introduced in May 2023 in GitLab 16.1.0,
Let's personalize your content