Lucene search
GoogleOSV:CVE-2021-39867HistoryOct 05, 2021 - 1:15 p.m.
CVE-2021-39867
2021-10-0513:15:00
Google
osv.dev
2
In all versions of GitLab CE/EE since version 8.15, a DNS rebinding vulnerability in Gitea Importer may be exploited by an attacker to trigger Server Side Request Forgery (SSRF) attacks.
| CPE | Name | Operator | Version |
|---|---|---|---|
| gitlab | eq | 6.6.1 | |
| gitlab | eq | 10.6.0.pre | |
| gitlab | eq | 10.9.0.pre | |
| gitlab | eq | 8.12.0-rc7 | |
| gitlab | eq | 8.12.0-rc3 | |
| gitlab | eq | 11.3.0.pre | |
| gitlab | eq | 6.4.1 | |
| gitlab | eq | 6.7.0-ee | |
| gitlab | eq | 9.1.0.pre | |
| gitlab | eq | 8.12.0-rc2 |
Related
osv
osv
BIT-gitlab-2021-39867
2024-03-06 11:18:50
cvelist
cvelist
CVE-2021-39867
2021-10-05 12:29:39
veracode
veracode
Server Side Request Forgery (SSRF)
2023-08-06 19:52:20
nvd
nvd
CVE-2021-39867
2021-10-05 13:15:07
cve
cve
CVE-2021-39867
2021-10-05 13:15:07
ubuntucve
ubuntucve
CVE-2021-39867
2021-10-05 00:00:00
prion
prion
Server side request forgery (ssrf)
2021-10-05 13:15:00
nessus
nessus
GitLab 8.15 < 14.1.7 / 14.2 < 14.2.5 / 14.3 < 14.3.1 (CVE-2021-39867)
2024-01-02 00:00:00
FreeBSD : Gitlab -- vulnerabilities (1bdd4db6-2223-11ec-91be-001b217b3468)
2021-10-05 00:00:00
debiancve
debiancve
CVE-2021-39867
2021-10-05 13:15:07
freebsd
freebsd
Gitlab -- vulnerabilities
2021-09-30 00:00:00