Gitlab Ee Security Vulnerabilities
An issue has been discovered in GitLab EE affecting all versions starting from 10.2. Required CODEOWNERS approval could be bypassed by targeting a branch without the CODEOWNERS file. Affected versions are >=10.2, <13.3.9,>=13.4, <13.4.5,>=13.5,...
5.7CVSS
5.5AI Score
0.001EPSS
An issue has been discovered in GitLab EE affecting all versions starting from 8.12. A regular expression related to a file path resulted in the Advanced Search feature susceptible to catastrophic backtracking. Affected versions are >=8.12, <13.3.9,>=13.4, <13.4.5,>=13.5,...
4.3CVSS
4.5AI Score
0.001EPSS
Insufficient permission checks in scheduled pipeline API in GitLab CE/EE 13.0+ allows an attacker to read variable names and values for scheduled pipelines on projects visible to the attacker. Affected versions are >=13.0, <13.3.9,>=13.4.0, <13.4.5,>=13.5.0,...
6.5CVSS
6.2AI Score
0.001EPSS
CSRF in runner administration page in all versions of GitLab CE/EE allows an attacker who's able to target GitLab instance administrators to pause/resume runners. Affected versions are >=13.5.0, <13.5.2,>=13.4.0,...
4.3CVSS
4.6AI Score
0.001EPSS
A vulnerability in the internal Kubernetes agent api in GitLab CE/EE version 13.3 and above allows unauthorized access to private projects. Affected versions are: >=13.4, <13.4.5,>=13.3, <13.3.9,>=13.5,...
5.5CVSS
5.4AI Score
0.0004EPSS
A potential DOS vulnerability was discovered in GitLab CE/EE starting with version 12.6. The container registry name check could cause exponential number of backtracks for certain user supplied values resulting in high CPU usage. Affected versions are: >=12.6,...
4.3CVSS
4.6AI Score
0.001EPSS
Certain SAST CiConfiguration information could be viewed by unauthorized users in GitLab EE starting with 13.3. This information was exposed through GraphQL to non-members of public projects with repository visibility restricted as well as guest members on private projects. Affected versions are:.....
5.3CVSS
4.8AI Score
0.001EPSS
Private group info is leaked leaked in GitLab CE/EE version 10.2 and above, when the project is moved from private to public group. Affected versions are: >=10.2, <13.3.9,>=13.4, <13.4.5,>=13.5,...
5.3CVSS
5.2AI Score
0.001EPSS
GitLab CE/EE version 13.3 prior to 13.3.4 was vulnerable to an OAuth authorization scope change without user consent in the middle of the authorization...
10CVSS
9.1AI Score
0.002EPSS
GitLab EE 11.3 through 13.1.2 has Incorrect Access Control because of the Maven package upload...
5.3CVSS
5.2AI Score
0.001EPSS
Amazon EKS credentials disclosure in GitLab CE/EE 12.6 and later through 13.0.1 allows other administrators to view Amazon EKS credentials via HTML source...
5.3CVSS
3.6AI Score
0.001EPSS
An authorization issue relating to project maintainer impersonation was identified in GitLab EE 9.5 and later through 13.0.1 that could allow unauthorized users to impersonate as a maintainer to perform limited...
8.8CVSS
8.2AI Score
0.002EPSS
Kubernetes cluster token disclosure in GitLab CE/EE 10.3 and later through 13.0.1 allows other group maintainers to view Kubernetes cluster...
5.3CVSS
4.8AI Score
0.002EPSS
User is allowed to set an email as a notification email even without verifying the new email in all previous GitLab CE/EE versions through...
7.4CVSS
4.2AI Score
0.001EPSS
Client-Side code injection through Mermaid markup in GitLab CE/EE 12.9 and later through 13.0.1 allows a specially crafted Mermaid payload to PUT requests on behalf of other users via clicking on a...
6.1CVSS
6.1AI Score
0.002EPSS
A Denial of Service vulnerability allowed exhausting the system resources in GitLab CE/EE 12.0 and later through...
7.5CVSS
7.2AI Score
0.001EPSS
A user with an unverified email address could request an access to domain restricted groups in GitLab EE 12.2 and later through...
8.1CVSS
7.6AI Score
0.001EPSS
User email verification bypass in GitLab CE/EE 12.5 and later through 13.0.1 allows user to bypass email...
5.3CVSS
4.9AI Score
0.001EPSS
OAuth flow missing verification checks CE/EE 12.3 and later through 13.0.1 allows unverified user to use OAuth authorization code...
8.8CVSS
8.6AI Score
0.002EPSS
An authorization issue in the mirroring logic allowed read access to private repositories in GitLab CE/EE 10.6 and later through...
6.5CVSS
5.9AI Score
0.001EPSS
Missing permission check on fork relation creation in GitLab CE/EE 11.3 and later through 13.0.1 allows guest users to create a fork relation on restricted public projects via...
8.8CVSS
8.2AI Score
0.002EPSS
A specially crafted request could be used to confirm the existence of files hosted on object storage services, without disclosing their contents. This vulnerability affects GitLab CE/EE 12.10 and later through...
5.3CVSS
5.1AI Score
0.002EPSS
A Stored Cross-Site Scripting vulnerability allowed the execution of arbitrary Javascript code in the blobs API in all previous GitLab CE/EE versions through...
6.1CVSS
5.9AI Score
0.003EPSS
A Reflected Cross-Site Scripting vulnerability allowed the execution of arbitrary Javascript code on the Static Site Editor in GitLab CE/EE 12.10 and later through...
6.1CVSS
6AI Score
0.003EPSS
A Stored Cross-Site Scripting vulnerability allowed the execution on Javascript payloads on the Metrics Dashboard in GitLab CE/EE 12.8 and later through...
6.1CVSS
5.7AI Score
0.003EPSS
Insecure authorization in Project Deploy Keys in GitLab CE/EE 12.8 and later through 13.0.1 allows users to update permissions of other users' deploy keys under certain...
4.3CVSS
4.3AI Score
0.001EPSS
GitLab EE 12.8 and later allows Exposure of Sensitive Information to an Unauthorized Actor via...
5.3CVSS
5.3AI Score
0.001EPSS
An issue was discovered in GitLab Community Edition (CE) and Enterprise Edition (EE) before 12.7.9, 12.8.x before 12.8.9, and 12.9.x before 12.9.3. A Workhorse bypass could lead to NuGet package and file disclosure (Exposure of Sensitive Information) via request...
7.5CVSS
7.1AI Score
0.002EPSS
An issue was discovered in GitLab CE and EE 8.15 through 12.9.2. Members of a group could still have access after the group is...
6.5CVSS
6.2AI Score
0.001EPSS
GitLab EE/CE 11.10 to 12.9 is leaking information on restricted CI pipelines metrics to unauthorized...
4.3CVSS
4.2AI Score
0.001EPSS
GitLab EE/CE 8.11 to 12.9 is leaking information on Issues opened in a public project and then moved to a private project through Web-UI and GraphQL...
5.3CVSS
4.9AI Score
0.001EPSS
9.8CVSS
9.2AI Score
0.002EPSS
GitLab EE/CE 9.0 to 12.9 allows a maintainer to modify other maintainers' pipeline trigger descriptions within the same...
4.3CVSS
4.3AI Score
0.001EPSS
GitLab EE/CE 8.17 to 12.9 is vulnerable to information leakage when querying a merge request...
7.5CVSS
7.2AI Score
0.002EPSS
GitLab EE/CE 8.5 to 12.9 is vulnerable to a an path traversal when moving an issue between...
5.5CVSS
5.4AI Score
0.002EPSS
GitLab EE/CE 10.8 to 12.9 is leaking metadata and comments on vulnerabilities to unauthorized users on the vulnerability feedback...
4.3CVSS
4.7AI Score
0.001EPSS
6.5CVSS
6.4AI Score
0.001EPSS
GitLab EE/CE 11.1 through 12.9 is vulnerable to parameter tampering on an upload feature that allows an unauthorized user to read content available under specific...
6.5CVSS
6.3AI Score
0.001EPSS
In GitLab EE 11.7 through 12.9, the NPM feature is vulnerable to a path traversal...
7.5CVSS
7.3AI Score
0.002EPSS
GitLab EE 3.0 through 12.8.1 allows SSRF. An internal investigation revealed that a particular deprecated service was creating a server side request forgery...
9.8CVSS
9.3AI Score
0.002EPSS
GitLab EE 12.4.2 through 12.8.1 allows Denial of Service. It was internally discovered that a potential denial of service involving permissions checks could impact a project home...
7.5CVSS
7.2AI Score
0.001EPSS
GitLab EE 11.6 through 12.8.1 allows Information Disclosure. Sending a specially crafted request to the vulnerability_feedback endpoint could result in the exposure of a private project...
5.3CVSS
5AI Score
0.001EPSS
In GitLab Enterprise Edition (EE) 12.5.0 through 12.7.5, sharing a group with a group could grant project access to unauthorized...
7.5CVSS
7.2AI Score
0.002EPSS
An issue was discovered in GitLab EE 11.3 and later. A GitLab Workhorse bypass could lead to package and file disclosure via request...
7.5CVSS
7.2AI Score
0.002EPSS
5.3CVSS
5.4AI Score
0.001EPSS
7.5CVSS
7.4AI Score
0.001EPSS
5.3CVSS
5.4AI Score
0.001EPSS
5.3CVSS
5.4AI Score
0.001EPSS
6.1CVSS
6.2AI Score
0.001EPSS
7.5CVSS
7.4AI Score
0.001EPSS