Lucene search

K
osvGoogleOSV:CVE-2021-22171
HistoryJan 15, 2021 - 4:15 p.m.

CVE-2021-22171

2021-01-1516:15:13
Google
osv.dev
9

6.6 Medium

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

56.4%

Insufficient validation of authentication parameters in GitLab Pages for GitLab 11.5+ allows an attacker to steal a victim’s API token if they click on a maliciously crafted link

CPENameOperatorVersion
gitlabeq13.7.0-ee
gitlabeq13.7.1-ee

6.6 Medium

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

56.4%