CVE-2022-0333: Incorrect Authorization
(updated )
The calendar:manageentries
capability allowed managers to access or modify any calendar event, but should have been restricted from accessing user level events.
References
Detect and mitigate CVE-2022-0333 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →