Lucene search
GitLabCVELIST:CVE-2021-22244HistoryAug 25, 2021 - 6:34 p.m.
CVE-2021-22244
2021-08-2518:34:06
GitLab
www.cve.org
5
gitlab
vulnerability
authorization
reporter
data access
CVSS3
3.1
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N
EPSS
0.001
Percentile
38.9%
Improper authorization in the vulnerability report feature in GitLab EE affecting all versions since 13.1 allowed a reporter to access vulnerability data
CNA Affected
[
{
"product": "GitLab",
"vendor": "GitLab",
"versions": [
{
"status": "affected",
"version": ">=13.1, <13.12.9"
},
{
"status": "affected",
"version": ">=14.0, <14.0.7"
},
{
"status": "affected",
"version": ">=14.1, <14.1.2"
}
]
}
]Related
nessus
nessus
GitLab 13.1 < 13.12.9 / 14.0 < 14.0.7 / 14.1 < 14.1.2 (CVE-2021-22244)
2024-01-02 00:00:00
osv
osv
BIT-gitlab-2021-22244
2024-03-06 11:19:18
CVE-2021-22244
2021-08-25 19:15:11
nvd
nvd
CVE-2021-22244
2021-08-25 19:15:11
prion
prion
Authorization
2021-08-25 19:15:00
debiancve
debiancve
CVE-2021-22244
2021-08-25 19:15:11
cve
cve
CVE-2021-22244
2021-08-25 19:15:11
ubuntucve
ubuntucve
CVE-2021-22244
2021-08-25 00:00:00
CVSS3
3.1
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N
EPSS
0.001
Percentile
38.9%
Related for CVELIST:CVE-2021-22244