Lucene search
HistorySep 12, 2024 - 5:15 p.m.
CVE-2024-8124
gitlab
denial of service
cve-2024-8124
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
0.001
Percentile
17.7%
An issue was discovered in GitLab CE/EE affecting all versions starting from 16.4 prior to 17.1.7, starting from 17.2 prior to 17.2.5, starting from 17.3 prior to 17.3.2 which could cause Denial of Service via sending a specific POST request.
Affected configurations
Node
gitlabgitlabRange16.4.0–17.1.7community
ORgitlabgitlabRange16.4.0–17.1.7enterprise
ORgitlabgitlabRange17.2.0–17.2.5community
ORgitlabgitlabRange17.2.0–17.2.5enterprise
ORgitlabgitlabRange17.3.0–17.3.2community
ORgitlabgitlabRange17.3.0–17.3.2enterprise
Related
debiancve
debiancve
CVE-2024-8124
2024-09-12 17:15:06
cve
cve
CVE-2024-8124
2024-09-12 17:15:06
cvelist
cvelist
CVE-2024-8124 Inefficient Regular Expression Complexity in GitLab
2024-09-12 16:56:33
nessus
nessus
GitLab 16.4 < 17.1.7 / 17.2 < 17.2.5 / 17.3 < 17.3.2 (CVE-2024-8124)
2024-09-12 00:00:00
FreeBSD : Gitlab -- vulnerabilities (bcc8b21e-7122-11ef-bece-2cf05da270f3)
2024-09-13 00:00:00
vulnrichment
vulnrichment
CVE-2024-8124 Inefficient Regular Expression Complexity in GitLab
2024-09-12 16:56:33
osv
osv
CVE-2024-8124
2024-09-12 17:15:06
BIT-gitlab-2024-8124
2024-09-14 07:06:46
freebsd
freebsd
Gitlab -- vulnerabilities
2024-09-11 00:00:00
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
0.001
Percentile
17.7%
Related for NVD:CVE-2024-8124