CVE-2021-22211

🗓️ 05 May 2021 22:03:25Reported by GitLabType

cve🔗 web.nvd.nist.gov📰️ 2 Media mentions👁 60 Views

An issue discovered in GitLab CE/EE affecting all versions starting from 13.7, allowing impersonation of a user

Reporter	Title	Published	Views	Family All 19
FreeBSD	Gitlab -- Vulnerabilities	28 Apr 202100:00	–	freebsd
ArchLinux	[ASA-202105-4] gitlab: multiple issues	19 May 202100:00	–	archlinux
CNNVD	GitLab 访问控制错误漏洞	29 Apr 202100:00	–	cnnvd
Cvelist	CVE-2021-22211	5 May 202122:03	–	cvelist
Debian CVE	CVE-2021-22211	5 May 202122:03	–	debiancve
EUVD	EUVD-2021-9357	3 Oct 202520:07	–	euvd
Tenable Nessus	FreeBSD : Gitlab -- Vulnerabilities (518a119c-a864-11eb-8ddb-001b217b3468)	29 Apr 202100:00	–	nessus
Tenable Nessus	GitLab 13.7 < 13.9.7 / 13.10 < 13.10.4 / 13.11 < 13.11.2 (CVE-2021-22211)	3 Jan 202400:00	–	nessus
Tenable Nessus	Linux Distros Unpatched Vulnerability : CVE-2021-22211	30 Aug 202500:00	–	nessus
NCSC	Vulnerabilities fixed in GitLab CE and EE	29 Apr 202100:00	–	ncsc

NVD

Vulners

Node

gitlab gitlabRange13.7.0–13.9.7community

gitlab gitlabRange13.7.0–13.9.7enterprise

gitlab gitlabRange13.10.0–13.10.4community

gitlab gitlabRange13.10.0–13.10.4enterprise

gitlab gitlabRange13.11.0–13.11.2community

gitlab gitlabRange13.11.0–13.11.2enterprise

[
  {
    "product": "GitLab",
    "vendor": "GitLab",
    "versions": [
      {
        "status": "affected",
        "version": ">=13.11, <13.11.2"
      },
      {
        "status": "affected",
        "version": ">=13.10, <13.10.4"
      },
      {
        "status": "affected",
        "version": ">=13.7, <13.9.7"
      }
    ]
  }
]

Source	Link
gitlab	www.gitlab.com/gitlab-org/cves/-/blob/master/2021/CVE-2021-22211.json
gitlab	www.gitlab.com/gitlab-org/gitlab/-/issues/298847

21 Nov 2024 05:49Current

4.6Medium risk

Vulners AI Score4.6

CVSS 23.5

CVSS 3.13.1 - 4.3

EPSS0.00165

CWE-863

gitlab ce ee vulnerability cve-2021-22211 access handling