Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

CVE-2022-3726

🗓️ 09 Nov 2022 00:00:00Reported by GitLabType 
cvelist
 cvelist🔗 www.cve.org👁 15 Views

Lack of sand-boxing in GitLab OpenAPI viewer allows HTTP request manipulatio

Show more
Related
Affected
Refs
ReporterTitlePublishedViews
Family
OSV		BIT-gitlab-2022-3726
6 Mar 202411:13
osv
OSV		CVE-2022-3726
10 Nov 202200:15
osv
UbuntuCve		CVE-2022-3726
10 Nov 202200:00
ubuntucve
Prion		Design/Logic Flaw
10 Nov 202200:15
prion
CVE		CVE-2022-3726
10 Nov 202200:15
cve
Veracode		Remote Code Execution (RCE)
22 Jul 202321:44
veracode
NVD		CVE-2022-3726
10 Nov 202200:15
nvd
Debian CVE		CVE-2022-3726
10 Nov 202200:15
debiancve
Tenable Nessus		GitLab 12.6 < 15.3.5 / 15.4 < 15.4.4 / 15.5 < 15.5.2 (CVE-2022-3726)
8 Nov 202200:00
nessus
Tenable Nessus		FreeBSD : Gitlab -- Multiple vulnerabilities (16f7ec68-5cce-11ed-9be7-454b1dd82c64)
5 Nov 202200:00
nessus
Rows per page
[
  {
    "vendor": "GitLab",
    "product": "GitLab",
    "versions": [
      {
        "version": ">=12.6, <15.3.5",
        "status": "affected"
      },
      {
        "version": ">=15.4, <15.4.4",
        "status": "affected"
      },
      {
        "version": ">=15.5, <15.5.2",
        "status": "affected"
      }
    ]
  }
]

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
09 Nov 2022 00:00Current
9High risk
Vulners AI Score9
CVSS34.8
EPSS0.00183
gitlabsand-boxingopenapihttp request manipulation
15
.json
Report