Lucene search
GitLabCVELIST:CVE-2023-1204HistoryMay 03, 2023 - 12:00 a.m.
CVE-2023-1204
2023-05-0300:00:00
GitLab
www.cve.org
cve-2023-1204
gitlab
security issue
unverified email
user update settings
An issue has been discovered in GitLab CE/EE affecting all versions starting from 10.1 before 15.10.8, all versions starting from 15.11 before 15.11.7, all versions starting from 16.0 before 16.0.2. A user could use an unverified email as a public email and commit email by sending a specifically crafted request on user update settings.
CNA Affected
[
{
"vendor": "GitLab",
"product": "GitLab",
"versions": [
{
"version": ">=10.0, <12.9.8",
"status": "affected"
},
{
"version": ">=12.10, <12.10.7",
"status": "affected"
},
{
"version": ">=13.0, <13.0.1",
"status": "affected"
}
]
}
]Related
ubuntucve
ubuntucve
CVE-2023-1204
2023-05-03 00:00:00
cve
cve
CVE-2023-1204
2023-05-03 21:15:16
nessus
nessus
GitLab 10.0 < 12.9.8 / 12.10 < 12.10.7 / 13.0 < 13.0.1 (CVE-2023-1204)
2023-06-05 00:00:00
FreeBSD : Gitlab -- Vulnerability (cdb5338d-04ec-11ee-9c88-001b217b3468)
2023-06-07 00:00:00
osv
osv
CVE-2023-1204
2023-05-03 21:15:16
BIT-gitlab-2023-1204
2024-03-06 11:11:20
veracode
veracode
Authorization Bypass
2023-08-06 07:21:38
debiancve
debiancve
CVE-2023-1204
2023-05-03 21:15:16
prion
prion
Design/Logic Flaw
2023-05-03 21:15:00
nvd
nvd
CVE-2023-1204
2023-05-03 21:15:16
freebsd
freebsd
Gitlab -- Vulnerability
2023-06-05 00:00:00