Lucene search

CVE-2023-0450

🗓️ 05 Apr 2023 21:07:15Reported by [email protected]Type

An issue discovered in GitLab allowing ambiguous branch names social engineering

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 13
osv	BIT-gitlab-2023-0450	6 Mar 202411:12	–	osv
osv	CVE-2023-0450	5 Apr 202321:15	–	osv
cve	CVE-2023-0450	5 Apr 202321:15	–	cve
veracode	Improper Access Control	6 Aug 202322:01	–	veracode
nessus	GitLab 8.1 < 15.8.5 / 15.9 < 15.9.4 / 15.10 < 15.10.1 (CVE-2023-0450)	4 Apr 202300:00	–	nessus
nessus	FreeBSD : Gitlab -- Multiple Vulnerabilities (54006796-cf7b-11ed-a5d5-001b217b3468)	31 Mar 202300:00	–	nessus
nessus	GitLab < 15.8.5 (SECURITY-RELEASE-GITLAB-15-10-1-RELEASED)	3 Jan 202400:00	–	nessus
ubuntucve	CVE-2023-0450	5 Apr 202300:00	–	ubuntucve
debiancve	CVE-2023-0450	5 Apr 202321:15	–	debiancve
prion	Design/Logic Flaw	5 Apr 202321:15	–	prion

Nvd

Node

gitlab gitlabRange8.1.0–15.8.5community

gitlab gitlabRange8.1.0–15.8.5enterprise

gitlab gitlabRange15.9.0–15.9.4community

gitlab gitlabRange15.9.0–15.9.4enterprise

gitlab gitlabMatch15.10.0community

gitlab gitlabMatch15.10.0enterprise

Source	Link
hackerone	www.hackerone.com/reports/1831547
gitlab	www.gitlab.com/gitlab-org/gitlab/-/issues/388962
gitlab	www.gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-0450.json

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

05 Apr 2023 21:15Current

4.1Medium risk

Vulners AI Score4.1

CVSS34.6

EPSS0.01028