Lucene search
This script is Copyright (C) 2022-2024 and is owned by Tenable, Inc. or an Affiliate thereof.GITLAB_CVE-2022-1189.NASLHistoryApr 18, 2022 - 12:00 a.m.
GitLab 12.2 < 14.7.7 / 14.8 < 14.8.5 / 14.9 < 14.9.2 (CVE-2022-1189)
2022-04-1800:00:00
This script is Copyright (C) 2022-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
29
gitlab version
vulnerability
unauthorized user
approval rules
private project
cve-2022-1189
CVSS2
4
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:S/C:P/I:N/A:N
CVSS3
4.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
AI Score
4.3
Confidence
High
EPSS
0.001
Percentile
22.7%
The version of GitLab installed on the remote host is affected by a vulnerability, as follows:
- An issue has been discovered in GitLab CE/EE affecting all versions starting from 12.2 before 14.7.7, all versions starting from 14.8 before 14.8.5, all versions starting from 14.9 before 14.9.2 that allowed for an unauthorised user to read the the approval rules of a private project. (CVE-2022-1189)
Note that Nessus has not tested for this issue but has instead relied only on the application’s self-reported version number.
#%NASL_MIN_LEVEL 70300
##
# (C) Tenable, Inc.
##
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(159820);
script_version("1.5");
script_set_attribute(attribute:"plugin_modification_date", value:"2024/05/17");
script_cve_id("CVE-2022-1189");
script_name(english:"GitLab 12.2 < 14.7.7 / 14.8 < 14.8.5 / 14.9 < 14.9.2 (CVE-2022-1189)");
script_set_attribute(attribute:"synopsis", value:
"The version of GitLab installed on the remote host is affected by a vulnerability.");
script_set_attribute(attribute:"description", value:
"The version of GitLab installed on the remote host is affected by a vulnerability, as follows:
- An issue has been discovered in GitLab CE/EE affecting all versions starting from 12.2 before 14.7.7, all
versions starting from 14.8 before 14.8.5, all versions starting from 14.9 before 14.9.2 that allowed for
an unauthorised user to read the the approval rules of a private project. (CVE-2022-1189)
Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version
number.");
# https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-1189.json
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?c58ee13d");
script_set_attribute(attribute:"see_also", value:"https://gitlab.com/gitlab-org/gitlab/-/issues/353718");
script_set_attribute(attribute:"solution", value:
"Upgrade to GitLab version 14.7.7, 14.8.5, 14.9.2 or later.");
script_set_attribute(attribute:"agent", value:"unix");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:S/C:P/I:N/A:N");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2022-1189");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"vuln_publication_date", value:"2022/03/31");
script_set_attribute(attribute:"patch_publication_date", value:"2022/03/31");
script_set_attribute(attribute:"plugin_publication_date", value:"2022/04/18");
script_set_attribute(attribute:"plugin_type", value:"combined");
script_set_attribute(attribute:"cpe", value:"cpe:/a:gitlab:gitlab");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"CGI abuses");
script_copyright(english:"This script is Copyright (C) 2022-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("gitlab_nix_installed.nbin", "gitlab_webui_detect.nbin");
script_require_keys("installed_sw/GitLab");
exit(0);
}
include('vcf.inc');
var app = 'GitLab';
var app_info = vcf::combined_get_app_info(app:app);
if (report_paranoia < 2 && max_index(app_info.parsed_version[0]) < 3 && app_info.version =~ "^14\.(7|8|9)$")
if (!empty_or_null(app_info.port))
audit(AUDIT_POTENTIAL_VULN, app, app_info.version, app_info.port);
else
audit(AUDIT_POTENTIAL_VULN, app, app_info.version);
var constraints = [
{ 'min_version' : '12.2', 'fixed_version' : '14.7.7' },
{ 'min_version' : '14.8', 'fixed_version' : '14.8.5' },
{ 'min_version' : '14.9', 'fixed_version' : '14.9.2' }
];
vcf::check_version_and_report(
app_info:app_info,
constraints:constraints,
severity:SECURITY_WARNING
);
Related
debiancve
debiancve
CVE-2022-1189
2022-04-04 20:15:10
ubuntucve
ubuntucve
CVE-2022-1189
2022-04-04 00:00:00
nvd
nvd
CVE-2022-1189
2022-04-04 20:15:10
cvelist
cvelist
CVE-2022-1189
2022-04-04 19:46:00
osv
osv
CVE-2022-1189
2022-04-04 20:15:10
BIT-gitlab-2022-1189
2024-03-06 11:16:14
openvas
openvas
prion
prion
Design/Logic Flaw
2022-04-04 20:15:00
cve
cve
CVE-2022-1189
2022-04-04 20:15:10
freebsd
freebsd
Gitlab -- multiple vulnerabilities
2022-03-31 00:00:00
nessus
nessus
CVSS2
4
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:S/C:P/I:N/A:N
CVSS3
4.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
AI Score
4.3
Confidence
High
EPSS
0.001
Percentile
22.7%
Related for GITLAB_CVE-2022-1189.NASL