Lucene search
GitLabCVELIST:CVE-2021-22179HistoryMar 24, 2021 - 4:48 p.m.
CVE-2021-22179
2021-03-2416:48:30
GitLab
www.cve.org
5
gitlab
ssrf attack
outbound requests
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L
AI Score
5.4
Confidence
High
EPSS
0.001
Percentile
38.5%
A vulnerability was discovered in GitLab versions before 12.2. GitLab was vulnerable to a SSRF attack through the Outbound Requests feature.
CNA Affected
[
{
"product": "GitLab",
"vendor": "GitLab",
"versions": [
{
"status": "affected",
"version": ">=13.8, <13.8.2"
},
{
"status": "affected",
"version": ">=13.7, <13.7.6"
},
{
"status": "affected",
"version": ">=12.2, <13.6.6"
}
]
}
]Related
nvd
nvd
CVE-2021-22179
2021-03-24 17:15:13
nessus
nessus
GitLab 12.2 < 13.6.6 / 13.7 < 13.7.6 / 13.8 < 13.8.2 (CVE-2021-22179)
2024-05-17 00:00:00
veracode
veracode
Server-Side Request Forgery (SSRF)
2023-08-06 14:25:28
cve
cve
CVE-2021-22179
2021-03-24 17:15:13
ubuntucve
ubuntucve
CVE-2021-22179
2021-03-24 00:00:00
osv
osv
CVE-2021-22179
2021-03-24 17:15:13
BIT-gitlab-2021-22179
2024-03-06 11:20:30
prion
prion
Design/Logic Flaw
2021-03-24 17:15:00
debiancve
debiancve
CVE-2021-22179
2021-03-24 17:15:13
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L
AI Score
5.4
Confidence
High
EPSS
0.001
Percentile
38.5%
Related for CVELIST:CVE-2021-22179