Gitlab · Gitlab Ce/Ee · CVE-2024-7110
**Name of the Vulnerable Software and Affected Versions**
GitLab EE versions 17.0 through 17.1.6
GitLab EE version 17.2 prior to 17.2.4
GitLab EE version 17.3 prior to 17.3.1
**Description**
An issue in GitLab EE allows an attacker to execute arbitrary commands in a victim's pipeline through prompt injection.
**Recommendations**
For versions 17.0 through 17.1.6, update to a version after 17.1.6.
For version 17.2 prior to 17.2.4, update to version 17.2.4 or later.
For version 17.3 prior to 17.3.1, update to version 17.3.1 or later.