Lucene search
HackeroneCVELIST:CVE-2017-0915HistoryMar 21, 2018 - 8:00 p.m.
CVE-2017-0915
2018-03-2120:00:00
CWE-77
hackerone
www.cve.org
Gitlab Community Edition version 10.2.4 is vulnerable to a lack of input validation in the GitlabProjectsImportService resulting in remote code execution.
CNA Affected
[
{
"product": "GitLab Community and Enterprise Editions",
"vendor": "GitLab",
"versions": [
{
"status": "affected",
"version": "8.9 - 10.1.5 Fixed in 10.1.6"
},
{
"status": "affected",
"version": "10.2.0 - 10.2.5 Fixed in 10.2.6"
},
{
"status": "affected",
"version": "10.3.0 - 10.3.3 Fixed in 10.3.4"
}
]
}
]Related
cve
cve
CVE-2017-0915
2018-03-21 20:29:00
hackerone
hackerone
debiancve
debiancve
CVE-2017-0915
2018-03-21 20:29:00
prion
prion
Input validation
2018-03-21 20:29:00
osv
osv
CVE-2017-0915
2018-03-21 20:29:00
gitlab - security update
2018-03-18 00:00:00
nvd
nvd
CVE-2017-0915
2018-03-21 20:29:00
ubuntucve
ubuntucve
CVE-2017-0915
2018-03-21 00:00:00
freebsd
freebsd
gitlab -- Remote code execution on project import
2018-01-16 00:00:00
openvas
openvas
GitLab 8.9.x - 9.5.10, 10.x - 10.1.5, 10.2.x - 10.2.5, 10.3.x - 10.3.3 Multiple Vulnerabilities
2022-03-28 00:00:00
Debian: Security Advisory (DSA-4145-1)
2018-03-17 00:00:00
nessus
nessus
FreeBSD : gitlab -- Remote code execution on project import (65fab89f-2231-46db-8541-978f4e87f32a)
2018-01-18 00:00:00
Debian DSA-4145-1 : gitlab - security update
2018-03-19 00:00:00
debian
debian
[SECURITY] [DSA 4145-1] gitlab security update
2018-03-18 18:51:04