CVE-2024-10043

🗓️ 12 Dec 2024 12:02:29Reported by GitLabType

Confidential incident title exposure in GitLab EE through Wiki History Diff feature.

Reporter	Title	Published	Views	Family All 18
FreeBSD	Gitlab -- Vulnerabilities	11 Dec 202400:00	–	freebsd
Circl	CVE-2024-10043	11 Dec 202416:30	–	circl
CNNVD	GitLab 安全漏洞	12 Dec 202400:00	–	cnnvd
Cvelist	CVE-2024-10043 Incorrect Authorization in GitLab	12 Dec 202412:02	–	cvelist
Debian CVE	CVE-2024-10043	12 Dec 202412:02	–	debiancve
EUVD	EUVD-2024-33482	3 Oct 202520:07	–	euvd
Tenable Nessus	FreeBSD : Gitlab -- Vulnerabilities (275ac414-b847-11ef-9877-2cf05da270f3)	13 Dec 202400:00	–	nessus
Tenable Nessus	GitLab 14.3 < 17.4.6 / 17.5 < 17.5.4 / 17.6 < 17.6.2 (CVE-2024-10043)	12 Dec 202400:00	–	nessus
Tenable Nessus	Linux Distros Unpatched Vulnerability : CVE-2024-10043	30 Aug 202500:00	–	nessus
NCSC	Vulnerabilities fixed in GitLab	13 Dec 202410:03	–	ncsc

NVD

Vulners

Node

gitlab gitlabRange14.3.0–17.4.6enterprise

gitlab gitlabRange17.5.0–17.5.4enterprise

gitlab gitlabRange17.6.0–17.6.2enterprise

[
  {
    "vendor": "GitLab",
    "product": "GitLab",
    "repo": "git://[email protected]:gitlab-org/gitlab.git",
    "cpes": [
      "cpe:2.3:a:gitlab:gitlab:*:*:*:*:*:*:*:*"
    ],
    "versions": [
      {
        "version": "14.3",
        "status": "affected",
        "lessThan": "17.4.6",
        "versionType": "semver"
      },
      {
        "version": "17.5",
        "status": "affected",
        "lessThan": "17.5.4",
        "versionType": "semver"
      },
      {
        "version": "17.6",
        "status": "affected",
        "lessThan": "17.6.2",
        "versionType": "semver"
      }
    ],
    "defaultStatus": "unaffected"
  }
]

Source	Link
hackerone	www.hackerone.com/reports/2774817
gitlab	www.gitlab.com/gitlab-org/gitlab/-/issues/499577

11 Jul 2025 20:33Current

3.3Low risk

Vulners AI Score3.3

CVSS 3.13.1

EPSS0.00264

SSVC

CWE-863