Lucene search
GitLabCVELIST:CVE-2021-22256HistoryAug 25, 2021 - 6:30 p.m.
CVE-2021-22256
2021-08-2518:30:43
GitLab
www.cve.org
5.4 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
5.4 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
29.8%
Improper authorization in GitLab CE/EE affecting all versions since 12.6 allowed guest users to create issues for Sentry errors and track their status
CNA Affected
[
{
"product": "GitLab",
"vendor": "GitLab",
"versions": [
{
"status": "affected",
"version": ">=12.6, <13.12.9"
},
{
"status": "affected",
"version": ">=14.0, <14.0.7"
},
{
"status": "affected",
"version": ">=14.1, <14.1.2"
}
]
}
]Related
osv
osv
BIT-gitlab-2021-22256
2024-03-06 11:19:04
CVE-2021-22256
2021-08-25 19:15:11
nessus
nessus
GitLab 12.6 < 13.12.9 / 14.0 < 14.0.7 / 14.1 < 14.1.2 (CVE-2021-22256)
2024-01-03 00:00:00
nvd
nvd
CVE-2021-22256
2021-08-25 19:15:11
debiancve
debiancve
CVE-2021-22256
2021-08-25 19:15:11
cve
cve
CVE-2021-22256
2021-08-25 19:15:11
veracode
veracode
Cross-Site Scripting (XSS)
2023-08-06 14:38:02
ubuntucve
ubuntucve
CVE-2021-22256
2021-08-25 00:00:00
prion
prion
Authorization
2021-08-25 19:15:00
5.4 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
5.4 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
29.8%
Related for CVELIST:CVE-2021-22256