Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2024-4660

An issue has been discovered in GitLab EE affecting all versions starting from 11.2 before 17.1.7, all versions starting from 17.2 before 17.2.5, all versions starting from 17.3 before 17.3.2. It was possible for a guest to read the source code of a private project by using group templates.

  • Published: Sep 12, 2024
  • Updated: May 4, 2025
  • CVE: CVE-2024-4660
  • Severity: High
  • Exploit:

CVSS v3:

  • Severity: High
  • Score: 7.5
  • AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

No CWE or OWASP classifications available.

Software From Fixed in
gitlab / gitlab 17.2.0 17.2.5
gitlab / gitlab 17.3.0 17.3.2
gitlab / gitlab 11.2.0 17.1.7