CISA added a GitLab Community and Enterprise Editions improper access control vulnerability to its Known Exploited Vulnerabilities catalog, impacting versions from 16.1 to 16.7
2, allowing for account hijacking without user interaction. GitLab addressed the flaw in versions 16.7.2, 16.5.6, and 16.6.4, recommending self-managed customers to review logs for exploitation attempts. ```https://securityaffairs.com/162646/security/gitlab-known-exploited-vulnerabilities-catalog.html