CVE-2022-0334: Exposure of Resource to Wrong Sphere
(updated )
Insufficient capability checks could lead to users accessing their grade report for courses where they does not have the required gradereport/user:view
capability.
References
Detect and mitigate CVE-2022-0334 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →