CVE-2022-45462: Improper Neutralization of Special Elements used in a Command ('Command Injection')
Alarm instance management has command injection when there is a specific command configured. It is only for logged-in users. We recommend you upgrade to version 2.0.6 or higher
References
Detect and mitigate CVE-2022-45462 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →