CVE-2023-3399: 
GitLab vulnerability analysis and mitigation

An issue was discovered in GitLab Enterprise Edition (EE) affecting all versions from 11.6 before 16.3.6, versions from 16.4 before 16.4.2, and versions from 16.5 before 16.5.1. The vulnerability allowed unauthorized project or group members to access CI/CD variables using custom project templates. This security issue was reported through GitLab's HackerOne bug bounty program and was assigned CVE-2023-3399 (GitLab Security Release, NVD).

The vulnerability has been assessed with a CVSS v3.1 Base Score of 8.5 (HIGH) with the vector string CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:L/A:N. The issue stems from an authorization bypass in the custom project templates functionality, where developers could exploit the template import process to gain unauthorized access to CI/CD variables (GitLab Security Release).

The vulnerability allowed unauthorized access to sensitive CI/CD variables across groups and subgroups. A developer with limited access could potentially extract confidential configuration data and secrets stored in CI/CD variables, leading to potential security breaches (GitLab Security Release).

The vulnerability has been patched in GitLab versions 16.3.6, 16.4.2, and 16.5.1. Organizations are strongly recommended to upgrade to these or newer versions immediately. GitLab.com has already been updated with the patched version (GitLab Security Release).