VYPR
Unrated severityNVD Advisory· Published Aug 25, 2021· Updated Aug 3, 2024

CVE-2021-22236

CVE-2021-22236

Description

Due to improper handling of OAuth client IDs, new subscriptions generated OAuth tokens on an incorrect OAuth client application. This vulnerability is present in GitLab CE/EE since version 14.1.

Affected products

3

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.