CVE-2014-8540

Name of the Vulnerable Software and Affected Versions GitLab versions 6.x through 7.x before 7.4.3

Description The issue concerns improper permission checks in the groups API, allowing remote authenticated guest users to modify ownership of arbitrary groups.

Recommendations For GitLab versions 6.x through 7.x before 7.4.3, update to version 7.4.3 or later to resolve the issue.