Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2022-1416HistoryMay 19, 2022 - 6:15 p.m.
CVE-2022-1416
2022-05-1918:15:00
Debian Security Bug Tracker
security-tracker.debian.org
21
0.001 Low
EPSS
Percentile
25.2%
Missing sanitization of data in Pipeline error messages in GitLab CE/EE affecting all versions starting from 1.0.2 before 14.8.6, all versions from 14.9.0 before 14.9.4, and all versions from 14.10.0 before 14.10.1 allows for rendering of attacker controlled HTML tags and CSS styling
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 999 | all | gitlab | < 15.10.8+ds1-2 | gitlab_15.10.8+ds1-2_all.deb |
Related
nessus
nessus
GitLab 1.0.2 < 14.8.6 / 14.9.0 < 14.9.4 / 14.10.0 < 14.10.1 (CVE-2022-1416)
2024-01-03 00:00:00
GitLab 1.0.2 < 14.8.6 Multiple Vulnerabilities
2022-05-06 00:00:00
cvelist
cvelist
CVE-2022-1416
2022-05-19 17:10:07
prion
prion
Design/Logic Flaw
2022-05-19 18:15:00
osv
osv
CVE-2022-1416
2022-05-19 18:15:09
BIT-gitlab-2022-1416
2024-03-06 11:16:06
ubuntucve
ubuntucve
CVE-2022-1416
2022-05-19 00:00:00
cve
cve
CVE-2022-1416
2022-05-19 18:15:00
veracode
veracode
Cross-site Scripting (XSS)
2023-07-23 08:32:12
openvas
openvas