BIT-GITLAB-2024-8041 Uncontrolled Resource Consumption in GitLab

A Denial of Service DoS issue has been discovered in GitLab CE/EE affecting all versions prior to 17.1.6, 17.2 prior to 17.2.4, and 17.3 prior to 17.3.1. A denial of service could occur upon importing a maliciously crafted repository using the GitHub importer...

UBUNTU-CVE-2024-8041

A Denial of Service DoS issue has been discovered in GitLab CE/EE affecting all versions prior to 17.1.6, 17.2 prior to 17.2.4, and 17.3 prior to 17.3.1. A denial of service could occur upon importing a maliciously crafted repository using the GitHub importer...

PT-2024-38767 · Gitlab · Gitlab Ce/Ee +1

Name of the Vulnerable Software and Affected Versions: GitLab CE/EE versions prior to 17.1.6 GitLab CE/EE versions 17.2 prior to 17.2.4 GitLab CE/EE versions 17.3 prior to 17.3.1 Description: A Denial of Service DoS issue has been discovered in GitLab CE/EE. The issue could occur upon importing a...

PT-2024-38082 · Gitlab · Gitlab Ce/Ee +1

Name of the Vulnerable Software and Affected Versions: GitLab EE versions 17.0 through 17.1.6 GitLab EE version 17.2 prior to 17.2.4 GitLab EE version 17.3 prior to 17.3.1 Description: An issue in GitLab EE allows an attacker to execute arbitrary commands in a victim's pipeline through prompt...

PT-2024-23914 · Gitlab · Gitlab Ce/Ee +1

Name of the Vulnerable Software and Affected Versions: GitLab EE versions 12.5 through 17.1.6 GitLab EE versions 17.2 through 17.2.4 GitLab EE versions 17.3 through 17.3.1 Description: An issue has been discovered in GitLab EE that may allow unauthorized users to bypass IP restrictions for groups...

GitLab < 17.1.6 / 17.2 < 17.2.4 / 17.3 < 17.3.1 (CVE-2024-8041)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - A Denial of Service DoS issue has been discovered in GitLab CE/EE affecting all versions prior to 17.1.6, 17.2 prior to 17.2.4, and 17.3 prior to 17.3.1. A denial of service could occur upon importing...

Apple Security Update: Safari 17.3.1

Apple recommends to install security update Safari 17.3.1 on devices macOS Monterey and macOS Ventura...

Apple Security Update: iOS 17.3.1 and iPadOS 17.3.1

Apple recommends to install security update iOS 17.3.1 and iPadOS 17.3.1 on devices iPhone XS and later, iPad Pro 12.9-inch 2nd generation and later, iPad Pro 10.5-inch, iPad Pro 11-inch 1st generation and later, iPad Air 3rd generation and later, iPad 6th generation and later, and iPad mini 5th...

CVE-2022-21824

Due to the formatting logic of the "console.table" function it was not safe to allow user controlled input to be passed to the "properties" parameter while simultaneously passing a plain object with at least one property as the first parameter, which could be "proto". The prototype pollution has...

Design/Logic Flaw

Due to the formatting logic of the "console.table" function it was not safe to allow user controlled input to be passed to the "properties" parameter while simultaneously passing a plain object with at least one property as the first parameter, which could be "proto". The prototype pollution has...

Cisco IOS XE SD-WAN Software 参数注入漏洞

Cisco IOS XE is an open and flexible operating system optimized for future work. A parameter injection vulnerability exists in Cisco IOS XE versions after 17.3.1. The vulnerability is due to insufficient input validation on certain CLI commands. An attacker could exploit the vulnerability to gain...

Cisco IOS XE SD-WAN Software 命令注入漏洞

Cisco IOS XE is an open and flexible operating system optimized for future work. A command injection vulnerability exists in Cisco IOS XE versions after 17.3.1. The vulnerability is due to insufficient input validation on certain CLI commands. An attacker could exploit the vulnerability to execut...

biobb-io (>=0.0.1 <=0.0.8), biobb-model (>=0.0.1 <=0.0.10) +6 more potentially affected by CVE-2017-15612 via mistune (>=0.7.3 <=0.7.4)

mistune PYPI version =0.7.3, =0.0.1, =0.0.1, =0.0.6, =0.2.1, =2.2.20170208112505, =0.1.0, =0.1.2, =0.3.2 Source cves: CVE-2017-15612 Source advisory: OSV:PYSEC-2017-80...