Lucene search

CVE-2024-6595

🗓️ 17 Jul 2024 02:10:15Reported by [email protected]Type

GitLab CE/EE security issue with NPM package uploa

Reporter	Title	Published	Views	Family All 11
CVE	CVE-2024-6595	17 Jul 202402:15	–	cve
UbuntuCve	CVE-2024-6595	17 Jul 202400:00	–	ubuntucve
Tenable Nessus	GitLab 11.8 < 16.11.6 / 17.0 < 17.0.4 / 17.1 < 17.1.2 (CVE-2024-6595)	17 Jul 202400:00	–	nessus
Tenable Nessus	FreeBSD : Gitlab -- vulnerabilities (acb4eab6-3f6d-11ef-8657-001b217b3468)	11 Jul 202400:00	–	nessus
Cvelist	CVE-2024-6595 Uncontrolled Search Path Element in GitLab	17 Jul 202401:30	–	cvelist
OSV	UBUNTU-CVE-2024-6595	17 Jul 202402:15	–	osv
OSV	BIT-GITLAB-2024-6595	19 Jul 202407:19	–	osv
OSV	CVE-2024-6595	17 Jul 202402:15	–	osv
Debian CVE	CVE-2024-6595	17 Jul 202402:15	–	debiancve
Vulnrichment	CVE-2024-6595 Uncontrolled Search Path Element in GitLab	17 Jul 202401:30	–	vulnrichment

Nvd

Node

gitlab gitlabRange11.8.0–16.11.6community

gitlab gitlabRange11.8.0–16.11.6enterprise

gitlab gitlabRange17.0.0–17.0.4community

gitlab gitlabRange17.0.0–17.0.4enterprise

gitlab gitlabRange17.1.0–17.1.2community

gitlab gitlabRange17.1.0–17.1.2enterprise

Source	Link
gitlab	www.gitlab.com/gitlab-org/gitlab/-/issues/417975
blog	www.blog.vlt.sh/blog/the-massive-hole-in-the-npm-ecosystem

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

17 Jul 2024 02:15Current

CVSS35.3

EPSS0.00046