CVE-2021-39879
Published: 4 October 2021
Missing authentication in all versions of GitLab CE/EE since version 7.11.0 allows an attacker with access to a victim's session to disable two-factor authentication
Priority
CVSS 3 base score: 3.5