GitLab releases a patch for Critical CI/CD Pipeline Vulnerability.

GitLab has a critical vulnerability (CVE-2024-6385) in its DevOps platform that allows attackers to run a pipeline in the context of any user, potentially gaining unauthorized access to projects, data, and code repositories.

Gitlab Fixes Security Flaw That Lets Attackers Run Pipeline Jobs

GitLab Ships Update for Critical Pipeline Execution Vulnerability

GitLab Releases Patch for Critical CI/CD Pipeline Vulnerability and 13 Others

Hacker News: GitLab Releases Patch for Critical CI/CD Pipeline Vulnerability and 13 Others