Lucene search
PRIOn knowledge basePRION:CVE-2021-39881HistoryOct 05, 2021 - 2:15 p.m.
Information disclosure
2021-10-0514:15:00
PRIOn knowledge base
www.prio-n.com
3
In all versions of GitLab CE/EE since version 7.7, the application may let a malicious user create an OAuth client application with arbitrary scope names which may allow the malicious user to trick unsuspecting users to authorize the malicious client application using the spoofed scope name and description.
Related
ubuntucve
ubuntucve
CVE-2021-39881
2021-10-05 00:00:00
nvd
nvd
CVE-2021-39881
2021-10-05 14:15:07
osv
osv
BIT-gitlab-2021-39881
2024-03-06 11:18:32
CVE-2021-39881
2021-10-05 14:15:07
veracode
veracode
Authorization Bypass
2023-08-06 19:55:33
debiancve
debiancve
CVE-2021-39881
2021-10-05 14:15:07
cve
cve
CVE-2021-39881
2021-10-05 14:15:07
nessus
nessus
GitLab 7.7 < 14.1.7 / 14.2 < 14.2.5 / 14.3 < 14.3.1 (CVE-2021-39881)
2024-01-03 00:00:00
FreeBSD : Gitlab -- vulnerabilities (1bdd4db6-2223-11ec-91be-001b217b3468)
2021-10-05 00:00:00
cvelist
cvelist
CVE-2021-39881
2021-10-05 13:40:33
freebsd
freebsd
Gitlab -- vulnerabilities
2021-09-30 00:00:00