Gitlab · Gitlab Ce/Ee · CVE-2021-39902
**Name of the Vulnerable Software and Affected Versions**
GitLab CE/EE versions 13.4 and above
**Description**
The issue allows a user with guest membership in a project to modify the severity of an incident due to incorrect authorization.
**Recommendations**
For GitLab CE/EE versions 13.4 and above, update to a version that includes the fix for this issue to prevent unauthorized modification of incident severity.