Lucene search
GitLabCVELIST:CVE-2021-39878HistoryOct 05, 2021 - 12:17 p.m.
CVE-2021-39878
2021-10-0512:17:08
GitLab
www.cve.org
5.8 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:N/A:N
5.9 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
40.7%
A stored Reflected Cross-Site Scripting vulnerability in the Jira integration in GitLab version 13.0 up to 14.3.1 allowed an attacker to execute arbitrary javascript code.
CNA Affected
[
{
"product": "GitLab",
"vendor": "GitLab",
"versions": [
{
"status": "affected",
"version": ">=13.0, <14.1.7"
},
{
"status": "affected",
"version": ">=14.2, <14.2.5"
},
{
"status": "affected",
"version": ">=14.3, <14.3.1"
}
]
}
]Related
ubuntucve
ubuntucve
CVE-2021-39878
2021-10-05 00:00:00
osv
osv
CVE-2021-39878
2021-10-05 13:15:08
BIT-gitlab-2021-39878
2024-03-06 11:18:36
prion
prion
Cross site scripting
2021-10-05 13:15:00
nvd
nvd
CVE-2021-39878
2021-10-05 13:15:08
cve
cve
CVE-2021-39878
2021-10-05 13:15:08
debiancve
debiancve
CVE-2021-39878
2021-10-05 13:15:08
veracode
veracode
Cross-Site Scripting (XSS)
2023-08-06 19:54:49
nessus
nessus
GitLab 13.0 < 14.1.7 / 14.2 < 14.2.5 / 14.3 < 14.3.1 (CVE-2021-39878)
2024-01-03 00:00:00
FreeBSD : Gitlab -- vulnerabilities (1bdd4db6-2223-11ec-91be-001b217b3468)
2021-10-05 00:00:00
freebsd
freebsd
Gitlab -- vulnerabilities
2021-09-30 00:00:00
5.8 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:N/A:N
5.9 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
40.7%
Related for CVELIST:CVE-2021-39878