GMS-2022-1472: Ignition config accessible to unprivileged software on VMware
(updated )
Unprivileged software in VMware VMs, including software running in unprivileged containers, can retrieve an Ignition config stored in a hypervisor guestinfo variable or OVF environment.
References
Code Behaviors & Features
Detect and mitigate GMS-2022-1472 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →