CVE-2024-12244 – GitLab EE Information Disclosure

April 24, 2025

CVE ID : CVE-2024-12244

Published : April 24, 2025, 8:15 a.m. | 2 hours, 28 minutes ago

Description : An issue has been discovered in access controls could allow users to view certain restricted project information even when related features are disabled in GitLab EE, affecting all versions from 17.7 prior to 17.9.7, 17.10 prior to 17.10.5, and 17.11 prior to 17.11.1.

Severity: 4.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2024-13307 – Reales WP Real Estate WordPress Theme Unauthenticated File Deletion and Authorization Bypass Vulnerability

Next Article CVE-2025-1908 – GitLab Information Disclosure and Session Hijacking Vulnerability

Tenable updates Vulnerability Priority Rating scoring method to flag fewer vulnerabilities as critical

Google adds updated workspace templates in Firebase Studio that leverage new Agent mode

AI and its impact on the developer experience, or ‘where is the joy?’

Google launches OSS Rebuild tool to improve trust in open source packages

EcoFlow’s new portable battery stations are lighter and more powerful (DC plug included)

7 ways Linux can save you money

My favorite Kindle tablet just got a kids model, and it makes so much sense

You can turn your Google Photos into video clips now – here’s how

Blade Service Injection: Direct Service Access in Laravel Templates

Blade Service Injection: Direct Service Access in Laravel Templates

This Week in Laravel: NativePHP Mobile and AI Guidelines from Spatie

Retrieve the Currently Executing Closure in PHP 8.5

FOSS Weekly #25.30: AUR Poisoned, Linux Rising, PPA Explained, New Open Source Grammar Checker and More

FOSS Weekly #25.30: AUR Poisoned, Linux Rising, PPA Explained, New Open Source Grammar Checker and More

How to Open Control Panel in Windows 11

How to Shut Down Windows 11

CVE-2024-12244 – GitLab EE Information Disclosure

UNC6148 Backdoors Fully-Patched SonicWall SMA 100 Series Devices with OVERSTEP Rootkit

Hackers Deploy Stealth Backdoor in WordPress Mu-Plugins to Maintain Admin Access

CVE-2025-6698 – LabRedesCefetRJ WeGIA Cross Site Scripting Vulnerability

Cisco rolls out AI agents to automate network tasks at ‘machine speed’ – with IT still in control

CVE-2025-2537 – WordPress ThickBox Stored Cross-Site Scripting

“Let’s amp up everything” — Directive 8020 is Alien meets The Thing, and it’s introducing these huge changes for Supermassive’s cinematic horror games

CVE-2025-45487 – Linksys E5600 Command Injection Vulnerability

CVE-2025-5028 – ESET Windows Installation File Privilege Escalation Vulnerability

More From Our Main Blog: The Good, the Bad and the Ugly in Cybersecurity – Week 24

LLMs factor in unrelated information when recommending medical treatments

CVE-2024-12244 – GitLab EE Information Disclosure

Related Posts