Lucene search

K
freebsdFreeBSD03BF5157-D145-11EE-ACEE-001B217B3468
HistoryFeb 21, 2024 - 12:00 a.m.

Gitlab -- Vulnerabilities

2024-02-2100:00:00
vuxml.freebsd.org
8
stored-xss
privilege escalation
redos
ldap bypass
ip restriction bypass
guest role
sub-maintainer privilege

8.7 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N

7.7 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

29.9%

Gitlab reports:

Stored-XSS in user’s profile page
User with “admin_group_members” permission can invite other groups to gain owner access
ReDoS issue in the Codeowners reference extractor
LDAP user can reset password using secondary email and login using direct authentication
Bypassing group ip restriction settings to access environment details of projects through Environments/Operations Dashboard
Users with the Guest role can change Custom dashboard projects settings for projects in the victim group
Group member with sub-maintainer role can change title of shared private deploy keys
Bypassing approvals of CODEOWNERS

OSVersionArchitecturePackageVersionFilename
FreeBSDanynoarchgitlab-ce= 16.9.0UNKNOWN
FreeBSDanynoarchgitlab-ce< 16.9.1UNKNOWN

8.7 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N

7.7 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

29.9%

Related for 03BF5157-D145-11EE-ACEE-001B217B3468