Incorrect User Management in GitLab

An issue has been discovered in GitLab EE affecting all versions affecting all versions from 11.11 prior to 16.2.8, 16.3 prior to 16.3.5, and 16.4 prior to 16.4.1. Single Sign On restrictions were not correctly enforced for indirect project members accessing public members-only project repositories.

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

用户管理不正确

GitLab Enterprise Edition 安全漏洞

GitLab Enterprise Edition（EE）是美国GitLab公司的一套内容管理系统。 GitLab Enterprise Edition存在安全漏洞，该漏洞源于未正确实施单点登录限制。以下版本受到影响：11.11版本至16.2.8之前版本、16.3版本至16.3.5之前版本、16.4版本至16.4.1之前版本。

N/A

N/A