{"uuid": "de2955c1-04a6-4b19-914b-6146fd62b2d5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-6385", "type": "seen", "source": "https://t.me/brutsecurity/671", "content": "CVE-2024-6385: Improper Access Control in GitLab, 9.6 rating \ud83d\udd25\n\nThe new vulnerability allows an attacker to run pipeline jobs with the rights of any other user.\n\nSearch at Netlas.io:\n\ud83d\udc49 Link: https://nt.ls/HvsUY\n\ud83d\udc49 Dork: http.favicon.hash_sha256:72a2cad5025aa931d6ea56c3201d1f18e68a8cd39788c7c80d5b2b82aa5143ef\n\nRead more: https://www.bleepingcomputer.com/news/security/gitlab-warns-of-critical-bug-that-lets-attackers-run-pipelines-as-an-arbitrary-user/", "creation_timestamp": "2026-07-09T03:00:13.096150Z"}