GitLab released security update version 16.0.1, to address critical (CVSS v3.1 score: 10.0) flaw tracked as CVE-2023-2825. Vulnerability impacts GitLab Community Edition (CE) and Enterprise Edition (EE) version 16.0.0. An unauthenticated malicious user can use this vulnerability to read arbitrary files on the targeted system. GitLab developers recommend all users of GitLab 16.0.0 to update to version 16.0.1 as soon as possible.

More information on vulnerability and update is available in GitLab security advisory – gitlab.com.