Lucene search
K

9 matches found

Tenable Nessus
Tenable Nessus
added 2024/01/02 12:0 a.m.39 views

GitLab < 14.7.7 (CVE-2022-1157)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - Missing sanitization of logged exception messages in all versions prior to 14.7.7, 14.8 prior to 14.8.5, and 14.9 prior to 14.9.2 of GitLab CE/EE causes potential sensitive values in invalid URLs to b...

3.5CVSS4.9AI score0.0062EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2022/04/18 12:0 a.m.42 views

GitLab < 14.7.7 / 14.8.x < 14.8.5 / 14.9.x < 14.9.2 Multiple Vulnerabilities

According to its self-reported version, the instance of GitLab running on the remote web server is prior to 14.7.7 14.8.x prior to 14.8.5, or 14.9.x prior to 14.9.2. It is, therefore, affected by the following vulnerabilities: - Adding a very large number of tags to a runner in GitLab CE/EE allow...

6.5CVSS5.4AI score0.0104EPSS
Exploits0References6
Circl
Circl
added 2022/04/12 12:16 a.m.5 views

CVE-2022-1157

creationtimestamp| type| source ---|---|--- 2022-04-12 00:16:17+00:00| seen| https://t.me/cibsecurity/40504...

3.5CVSS4AI score0.0062EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/04/11 8:15 p.m.4 views

CVE-2022-1157

Missing sanitization of logged exception messages in all versions prior to 14.7.7, 14.8 prior to 14.8.5, and 14.9 prior to 14.9.2 of GitLab CE/EE causes potential sensitive values in invalid URLs to be logged...

3.5CVSS5.2AI score0.0062EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2022/04/11 7:38 p.m.17 views

CVE-2022-1157

Missing sanitization of logged exception messages in all versions prior to 14.7.7, 14.8 prior to 14.8.5, and 14.9 prior to 14.9.2 of GitLab CE/EE causes potential sensitive values in invalid URLs to be logged...

2.6CVSS6.3AI score0.0062EPSS
Exploits0References4
Cvelist
Cvelist
added 2022/04/11 7:38 p.m.26 views

CVE-2022-1157

Missing sanitization of logged exception messages in all versions prior to 14.7.7, 14.8 prior to 14.8.5, and 14.9 prior to 14.9.2 of GitLab CE/EE causes potential sensitive values in invalid URLs to be logged...

2.6CVSS4.2AI score0.0062EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2022/04/11 7:38 p.m.55 views

CVE-2022-1157

Removed by vendor...

3.5CVSS5.8AI score0.0062EPSS
Exploits0
CVE
CVE
added 2022/04/11 7:38 p.m.100 views

CVE-2022-1157

GitLab CE/EE is affected by CVE-2022-1157 due to missing sanitization of logged exception messages. The issue affects all versions prior to 14.7.7, with 14.8 prior to 14.8.5 and 14.9 prior to 14.9.2. As described in the CVE entries, this vulnerability may allow sensitive values to be logged in in...

3.5CVSS3.6AI score0.0062EPSS
Exploits0References2Affected Software1
OpenVAS
OpenVAS
added 2022/04/05 12:0 a.m.22 views

GitLab < 14.7.7, 14.8.x < 14.8.5, 14.9.x < 14.9.2 Multiple Vulnerabilities

GitLab is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:gitlab:gitlab"; if description...

6.5CVSS5.8AI score0.0104EPSS
Exploits0References1
Rows per page
Query Builder