Lucene search
China National Vulnerability DatabaseCNVD-2021-91177HistoryNov 01, 2021 - 12:00 a.m.
GitLab Input Validation Error Vulnerability (CNVD-2021-91177)
2021-11-0100:00:00
China National Vulnerability Database
www.cnvd.org.cn
6
0.001 Low
EPSS
Percentile
45.3%
GitLab is a self-hosted, Git (version control system) project repository application developed using Ruby on Rails by GitLab, Inc. GitLab CE/EE is vulnerable to an input validation error that could be exploited to set a pipeline plan to be active in a project export, so that an owner could import the project without knowing that the pipeline is active by default.
| CPE | Name | Operator | Version |
|---|---|---|---|
| gitlab gitlab ce/ee | ge | 8.0 |
Related
nessus
nessus
GitLab 8.0 < 14.1.7 / 14.2 < 14.2.5 / 14.3 < 14.3.1 (CVE-2021-39895)
2024-01-03 00:00:00
osv
osv
BIT-gitlab-2021-39895
2024-03-06 11:18:15
CVE-2021-39895
2021-11-05 00:15:00
nvd
nvd
CVE-2021-39895
2021-11-05 00:15:10
veracode
veracode
Information Disclosure
2023-08-06 19:56:33
cve
cve
CVE-2021-39895
2021-11-05 00:15:10
prion
prion
Information disclosure
2021-11-05 00:15:00
debiancve
debiancve
CVE-2021-39895
2021-11-05 00:15:10
ubuntucve
ubuntucve
CVE-2021-39895
2021-11-05 00:00:00
cvelist
cvelist
CVE-2021-39895
2021-11-04 23:11:51
freebsd
freebsd
Gitlab -- Multiple Vulnerabilities
2021-10-28 00:00:00