Lucene search
K

CVE-2022-2992

🗓️ 17 Oct 2022 00:00:00Reported by GitLabType 
cve
 cve
🔗 web.nvd.nist.gov📰️ 4 Media mentions👁 2143 Views🌐 WEB

A vulnerability in GitLab CE/EE allows authenticated user to achieve remote code execution via Import from GitHub API endpoint

Related
Detection
Affected
Refs
Paths
Social
NVD
Vulners
Node
gitlabgitlabRange11.1015.1.6community
OR
gitlabgitlabRange11.1015.1.6enterprise
OR
gitlabgitlabRange15.215.2.4community
OR
gitlabgitlabRange15.215.2.4enterprise
OR
gitlabgitlabRange15.315.3.2community
OR
gitlabgitlabRange15.315.3.2enterprise
[
  {
    "vendor": "GitLab",
    "product": "GitLab",
    "versions": [
      {
        "version": ">=11.10, <15.1.6",
        "status": "affected"
      },
      {
        "version": ">=15.2, <15.2.4",
        "status": "affected"
      },
      {
        "version": ">=15.3, <15.3.2",
        "status": "affected"
      }
    ]
  }
]
ParameterPositionPathDescriptionCWE
idpathapi/v3/repositories/{id}GitLab GitHub repository import endpoint exposure used in the deserialization chain.CWE-74
ownerpathapi/v3/repos/\w+/\w+Endpoint returning a session payload that can include a Redis RESP object leading to deserialization in GitLab.CWE-74
repopathapi/v3/repos/\w+/\w+Endpoint returning a session payload that can include a Redis RESP object leading to deserialization in GitLab.CWE-74
grouppath{group}/public.git/info/refsGit HTTP backend endpoint that can deliver crafted RESP payloads via the info/refs exchange.CWE-74
public.gitpath{group}/public.git/info/refsGit HTTP backend endpoint that can deliver crafted RESP payloads via the info/refs exchange.CWE-74
grouppath{group}/public.git/git-upload-packGit upload-pack endpoint used in Git operations that can be leveraged to trigger payload delivery.CWE-74
public.gitpath{group}/public.git/git-upload-packGit upload-pack endpoint used in Git operations that can be leveraged to trigger payload delivery.CWE-74

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

17 Jun 2026 04:42Current
9.4High risk
Vulners AI Score9.4
CVSS 3.19.9
EPSS0.86194
SSVC
2143