CVE-2023-6564

An issue has been discovered in GitLab EE Premium and Ultimate affecting versions 16.4.3, 16.5.3, and 16.6.1. In projects using subgroups to define who can push and/or merge to protected branches, there may have been instances in which subgroup members with the Developer role were able to push or merge to protected branches.

CVSS v3 6.5 MEDIUM

6.5^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 2.8 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact HIGH

Availability Impact NONE

Scope UNCHANGED

References

Link	Resource
https://gitlab.com/gitlab-com/gl-infra/production/-/issues/17213	Issue Tracking Permissions Required

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:gitlab:gitlab:16.4.3::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:16.5.3::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:16.6.1::::enterprise:::

History

04 Mar 2024, 20:56

Type	Values Removed	Values Added
First Time		Gitlab Gitlab gitlab
CWE		NVD-CWE-Other
References	~~() https://gitlab.com/gitlab-com/gl-infra/production/-/issues/17213 -~~	() https://gitlab.com/gitlab-com/gl-infra/production/-/issues/17213 - Issue Tracking, Permissions Required
CPE		cpe:2.3:a:gitlab:gitlab:16.4.3::::enterprise::: cpe:2.3:a:gitlab:gitlab:16.5.3::::enterprise::: cpe:2.3:a:gitlab:gitlab:16.6.1::::enterprise:::

08 Feb 2024, 12:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-02-08 12:15

Updated : 2024-03-04 20:56

NVD link : CVE-2023-6564

Mitre link : CVE-2023-6564

CVE.ORG link : CVE-2023-6564

JSON object : View

Products Affected

gitlab

gitlab

CWE

NVD-CWE-Other CWE-285

Improper Authorization

{"id": "CVE-2023-6564", "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.5, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 2.8}, {"type": "Secondary", "source": "cve@gitlab.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.5, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 2.8}]}, "published": "2024-02-08T12:15:55.767", "references": [{"url": "https://gitlab.com/gitlab-com/gl-infra/production/-/issues/17213", "tags": ["Issue Tracking", "Permissions Required"], "source": "cve@gitlab.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}, {"type": "Secondary", "source": "cve@gitlab.com", "description": [{"lang": "en", "value": "CWE-285"}]}], "descriptions": [{"lang": "en", "value": "An issue has been discovered in GitLab EE Premium and Ultimate affecting versions 16.4.3, 16.5.3, and 16.6.1. In projects using subgroups to define who can push and/or merge to protected branches, there may have been instances in which subgroup members with the Developer role were able to push or merge to protected branches."}, {"lang": "es", "value": "Se descubri\u00f3 un problema en GitLab EE Premium y Ultimate que afecta las versiones 16.4.3, 16.5.3 y 16.6.1. En proyectos que utilizan subgrupos para definir qui\u00e9n puede enviar o fusionar ramas protegidas, es posible que haya habido casos en los que los miembros del subgrupo con el rol de Desarrollador pudieron enviar o fusionar ramas protegidas."}], "lastModified": "2024-03-04T20:56:09.493", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:gitlab:gitlab:16.4.3:*:*:*:enterprise:*:*:*", "vulnerable": true, "matchCriteriaId": "6A759830-9D31-4AF5-912F-CA91D6023AD6"}, {"criteria": "cpe:2.3:a:gitlab:gitlab:16.5.3:*:*:*:enterprise:*:*:*", "vulnerable": true, "matchCriteriaId": "D2A7EFB5-6D86-4034-99EF-78E95E32D155"}, {"criteria": "cpe:2.3:a:gitlab:gitlab:16.6.1:*:*:*:enterprise:*:*:*", "vulnerable": true, "matchCriteriaId": "598CF5D0-C052-4794-A66D-45BB6E002212"}], "operator": "OR"}]}], "sourceIdentifier": "cve@gitlab.com"}