Hosted on MSN

GitLab patches major security flaw - here's what we know

GitLab patched CVE-2026-0723, a flaw allowing 2FA bypass and account takeover Additional DoS vulnerabilities in authentication, API endpoints, Wiki, and SSH were also fixed GitLab urges immediate ...
Bleeping Computer

GitLab security update fixes critical account take over flaw

GitLab has released a critical security update for multiple versions of its Community and Enterprise Edition products to address eight vulnerabilities, one of which allows account takeover. GitLab is ...
Bleeping Computer

Latest Two-factor Authentication news

GitLab has patched a high-severity two-factor authentication bypass impacting community and enterprise editions of its software development platform. Over 10,000 Internet-exposed Fortinet firewalls ...
IT News For Australia Business

GitLab fixes account takeover vulnerability

GitLab has patched a critical and trivial-to-exploit account takeover bug. The attack vector for CVE-2023-7028 is the password reset function. “User account password reset emails could be delivered to ...