Vulnerability Database

290,476

Total vulnerabilities in the database

CVE-2023-4379

An issue has been discovered in GitLab EE affecting all versions starting from 15.3 prior to 16.2.8, 16.3 prior to 16.3.5, and 16.4 prior to 16.4.1. Code owner approval was not removed from merge requests when the target branch was updated.

  • Published: Nov 9, 2023
  • Updated: Nov 17, 2023
  • CVE: CVE-2023-4379
  • Severity: High
  • Exploit:

CVSS v3:

  • Severity: High
  • Score: 7.5
  • AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

No CWE or OWASP classifications available.

Software From Fixed in
gitlab / gitlab 16.3.0 16.3.5
gitlab / gitlab 16.4.0 16.4.0.x
gitlab / gitlab 15.3.0 16.2.8