CVE-2022-3286 Information

Description

Lack of IP address checking in GitLab EE affecting all versions from 14.2 prior to 15.2.5 15.3 prior to 15.3.4 and 15.4 prior to 15.4.1 allows a group member to bypass IP restrictions when using a deploy token

Reference

https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3286.json https://gitlab.com/gitlab-org/gitlab/-/issues/363827