CVE-2024-4994 | GitLab Community Edition/Enterprise Edition up to 16.11.4/17.0.2/17.1.0 GraphQL API cross-site request forgery

A vulnerability was found in GitLab Community Edition and Enterprise Edition up to 16.11.4/17.0.2/17.1.0. It has been classified as problematic. Affected is an unknown function of the component GraphQL API. The manipulation leads to cross-site request forgery.

This vulnerability is traded as CVE-2024-4994. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More