Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2023-0155HistoryMay 03, 2023 - 9:15 p.m.
CVE-2023-0155
2023-05-0321:15:16
Debian Security Bug Tracker
security-tracker.debian.org
10
gitlab
open redirect
vulnerability
user controlled
unix
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:N/I:L/A:L
EPSS
0.001
Percentile
40.7%
An issue has been discovered in GitLab CE/EE affecting all versions before 15.8.5, 15.9.4, 15.10.1. Open redirects was possible due to framing arbitrary content on any page allowing user controlled markdown
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 999 | all | gitlab | < 15.10.8+ds1-2 | gitlab_15.10.8+ds1-2_all.deb |
Related
osv
osv
BIT-gitlab-2023-0155
2024-03-06 11:12:33
CVE-2023-0155
2023-05-03 21:15:16
veracode
veracode
Open Redirect
2023-08-07 00:18:28
nessus
nessus
GitLab 0.0 < 15.8.5 / 15.9 < 15.9.4 / 15.10 < 15.10.1 (CVE-2023-0155)
2023-04-04 00:00:00
FreeBSD : Gitlab -- Multiple Vulnerabilities (54006796-cf7b-11ed-a5d5-001b217b3468)
2023-03-31 00:00:00
GitLab < 15.8.5 (SECURITY-RELEASE-GITLAB-15-10-1-RELEASED)
2024-01-03 00:00:00
cve
cve
CVE-2023-0155
2023-05-03 21:15:16
ubuntucve
ubuntucve
CVE-2023-0155
2023-05-03 00:00:00
prion
prion
Open redirect
2023-05-03 21:15:00
nvd
nvd
CVE-2023-0155
2023-05-03 21:15:16
cvelist
cvelist
CVE-2023-0155
2023-05-03 00:00:00
freebsd
freebsd
Gitlab -- Multiple Vulnerabilities
2023-03-30 00:00:00
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:N/I:L/A:L
EPSS
0.001
Percentile
40.7%
Related for DEBIANCVE:CVE-2023-0155