Lucene search

CVE-2023-0483

🗓️ 09 Mar 2023 20:09:15Reported by GitLabType

An issue in GitLab allows project maintainer to extract Datadog integration API key

Reporter	Title	Published	Views	Family All 13
UbuntuCve	CVE-2023-0483	9 Mar 202300:00	–	ubuntucve
Vulnrichment	CVE-2023-0483	9 Mar 202300:00	–	vulnrichment
Veracode	API Token Disclosure	6 Aug 202321:42	–	veracode
OSV	BIT-gitlab-2023-0483	6 Mar 202411:12	–	osv
OSV	CVE-2023-0483	9 Mar 202320:15	–	osv
Cvelist	CVE-2023-0483	9 Mar 202300:00	–	cvelist
Prion	Design/Logic Flaw	9 Mar 202320:15	–	prion
Tenable Nessus	GitLab 12.1 < 15.7.8 / 15.8 < 15.8.4 / 15.9 < 15.9.2 (CVE-2023-0483)	3 Mar 202300:00	–	nessus
Tenable Nessus	GitLab < 15.7.8 (SECURITY-RELEASE-GITLAB-15-9-2-RELEASED)	3 Jan 202400:00	–	nessus
Tenable Nessus	FreeBSD : Gitlab -- Multiple Vulnerabilities (f7c5b3a9-b9fb-11ed-99c6-001b217b3468)	3 Mar 202300:00	–	nessus

Nvd

Vulners

Node

gitlab gitlabRange12.1.0–15.7.8community

gitlab gitlabRange12.1.0–15.7.8enterprise

gitlab gitlabRange15.8.0–15.8.4community

gitlab gitlabRange15.8.0–15.8.4enterprise

gitlab gitlabRange15.9.0–15.9.2community

gitlab gitlabRange15.9.0–15.9.2enterprise

[
  {
    "vendor": "GitLab",
    "product": "GitLab",
    "versions": [
      {
        "version": ">=12.1, <15.7.8",
        "status": "affected"
      },
      {
        "version": ">=15.8, <15.8.4",
        "status": "affected"
      },
      {
        "version": ">=15.9, <15.9.2",
        "status": "affected"
      }
    ]
  }
]

Source	Link
gitlab	www.gitlab.com/gitlab-org/gitlab/-/issues/389188
gitlab	www.gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-0483.json
hackerone	www.hackerone.com/reports/1836466

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

09 Mar 2023 20:15Current

4Medium risk

Vulners AI Score4

CVSS33.8 - 5.5

EPSS0.00097

SSVC