Lucene search
+L

CVE-2024-6446

🗓️ 12 Sep 2024 16:56:53Reported by GitLabType 
cve
 cve
🔗 web.nvd.nist.gov👁 178 Views

An issue in GitLab versions 17.1 to 17.1.7, 17.2 to 17.2.5, and 17.3 to 17.3.2 allows crafted URLs to trick victims into trusting attacker-controlled applications

Related
Detection
Affected
Refs
ReporterTitlePublishedViews
Family
freebsd
Gitlab -- vulnerabilities
11 Sep 202400:00
freebsd
circl
CVE-2024-6446
12 Sep 202419:48
circl
cnnvd
GitLab 安全漏洞
12 Sep 202400:00
cnnvd
cvelist
CVE-2024-6446 Business Logic Errors in GitLab
12 Sep 202416:56
cvelist
debiancve
CVE-2024-6446
12 Sep 202416:56
debiancve
euvd
EUVD-2024-47545
3 Oct 202520:07
euvd
nessus
FreeBSD : Gitlab -- vulnerabilities (bcc8b21e-7122-11ef-bece-2cf05da270f3)
13 Sep 202400:00
nessus
nessus
GitLab 17.1 < 17.1.7 / 17.2 < 17.2.5 / 17.3 < 17.3.2 (CVE-2024-6446)
12 Sep 202400:00
nessus
nessus
Linux Distros Unpatched Vulnerability : CVE-2024-6446
30 Aug 202500:00
nessus
ncsc
Vulnerabilities fixed in GitLab Enterprise Edition and Community Edition
13 Sep 202408:44
ncsc
Rows per page
NVD
Vulners
Node
OR
gitlabgitlabRange17.1.017.1.7community
gitlabgitlabRange17.1.017.1.7enterprise
gitlabgitlabRange17.2.017.2.5community
gitlabgitlabRange17.2.017.2.5enterprise
gitlabgitlabRange17.3.017.3.2community
gitlabgitlabRange17.3.017.3.2enterprise
[
  {
    "vendor": "GitLab",
    "product": "GitLab",
    "repo": "git://[email protected]:gitlab-org/gitlab.git",
    "cpes": [
      "cpe:2.3:a:gitlab:gitlab:*:*:*:*:*:*:*:*"
    ],
    "versions": [
      {
        "version": "17.1",
        "status": "affected",
        "lessThan": "17.1.7",
        "versionType": "semver"
      },
      {
        "version": "17.2",
        "status": "affected",
        "lessThan": "17.2.5",
        "versionType": "semver"
      },
      {
        "version": "17.3",
        "status": "affected",
        "lessThan": "17.3.2",
        "versionType": "semver"
      }
    ],
    "defaultStatus": "unaffected"
  }
]

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

17 Jun 2026 08:18Current
3.7Low risk
Vulners AI Score3.7
CVSS 3.13.5
EPSS0.00383
SSVC
178