CVE-2022-1680

Name of the Vulnerable Software and Affected Versions GitLab Enterprise Edition versions 11.10 through 14.9.5 GitLab Enterprise Edition versions 14.10 through 14.10.4 GitLab Enterprise Edition versions 15.0 through 15.0.1

Description The issue is related to the SCIM feature in GitLab, which can allow an attacker to invite arbitrary users through their username and email, then change those users' email addresses via SCIM to an attacker-controlled email address, thus taking over those accounts in the absence of 2FA. The attacker can also change the display name and username of the targeted account. This issue affects GitLab Enterprise Edition when group SAML SSO is configured.

Recommendations For GitLab Enterprise Edition versions 11.10 through 14.9.5, update to version 14.9.5 or later. For GitLab Enterprise Edition versions 14.10 through 14.10.4, update to version 14.10.4 or later. For GitLab Enterprise Edition versions 15.0 through 15.0.1, update to version 15.0.1 or later. As a temporary workaround, consider disabling the SCIM feature until a patch is available. Restrict access to the SCIM feature to minimize the risk of exploitation. Enable 2FA to prevent account takeover.