Lucene search
PRIOn knowledge basePRION:CVE-2022-3726HistoryNov 10, 2022 - 12:15 a.m.
Design/Logic Flaw
2022-11-1000:15:00
PRIOn knowledge base
www.prio-n.com
7
openapi
gitlab
sand-boxing
http requests
security vulnerability
logic flaw
nvd
Lack of sand-boxing of OpenAPI documents in GitLab CE/EE affecting all versions from 12.6 prior to 15.3.5, 15.4 prior to 15.4.4, and 15.5 prior to 15.5.2 allows an attacker to trick a user to click on the Swagger OpenAPI viewer and issue HTTP requests that affect the victim’s account.
Related
ubuntucve
ubuntucve
CVE-2022-3726
2022-11-10 00:00:00
osv
osv
BIT-gitlab-2022-3726
2024-03-06 11:13:58
CVE-2022-3726
2022-11-10 00:15:22
nessus
nessus
GitLab 12.6 < 15.3.5 / 15.4 < 15.4.4 / 15.5 < 15.5.2 (CVE-2022-3726)
2022-11-08 00:00:00
cve
cve
CVE-2022-3726
2022-11-10 00:15:22
debiancve
debiancve
CVE-2022-3726
2022-11-10 00:15:22
nvd
nvd
CVE-2022-3726
2022-11-10 00:15:22
cvelist
cvelist
CVE-2022-3726
2022-11-09 00:00:00
veracode
veracode
Remote Code Execution (RCE)
2023-07-22 21:44:44
openvas
openvas
GitLab 12.6 < 15.3.5, 15.4 < 15.4.4, 15.5 < 15.5.2 Multiple Vulnerabilities
2022-11-11 00:00:00
freebsd
freebsd
Gitlab -- Multiple vulnerabilities
2022-11-02 00:00:00