CVE-2024-6385: GitLab Authentication Bypass Vulnerability
Tags
attack-pattern: Server - T1583.004 Server - T1584.004 Web Services - T1583.006 Web Services - T1584.006
Show in Graph
Common Information
Type Value
UUID 7c196f57-bbe0-4cc5-ba6c-ce92ead98480
Fingerprint f706cdfe4a050c5b
Analysis status DONE
Considered CTI value 0
Text language
Published July 16, 2024, midnight
Added to db Aug. 31, 2024, 10:10 a.m.
Last updated Nov. 13, 2024, 4:30 p.m.
Headline CVE-2024-6385: GitLab Authentication Bypass Vulnerability
Title CVE-2024-6385: GitLab Authentication Bypass Vulnerability
Detected Hints/Tags/Attributes 8/1/9
Source URLs
Redirection Url
Details Source https://www.sangfor.com/farsight-labs-threat-intelligence/cybersecurity/cve-2024-6385-gitlab-authentication-bypass
URL Provider
Details Provider Source level domain
Details sangfor.com www.sangfor.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 367 Sangfor https://www.sangfor.com/farsight-labs/cybersecurity.xml 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details CVE 17 
cve-2024-6385
Details Domain 3 
your.gitlab.com
Details Domain 58 
about.gitlab.com
Details Gitlab username 3 
help
Details Gitlab username 15 
update
Details Gitlab username 48 
releases
Details Url 1 
https://your.gitlab.com/help.
Details Url 15 
https://about.gitlab.com/update
Details Url 1 
https://about.gitlab.com/releases/2024/07/10/patch-release-gitlab-17-1-2-released