Lucene search
K

4 matches found

OSV
OSV
added 2023/01/26 9:18 p.m.4 views

UBUNTU-CVE-2022-4054

An issue has been discovered in GitLab affecting all versions starting from 9.3 before 15.4.6, all versions starting from 15.5 before 15.5.5, all versions starting from 15.6 before 15.6.1. It was possible for a project maintainer to leak a webhook secret token by changing the webhook URL to an...

5.5CVSS5.7AI score0.00707EPSS
Exploits1References2
CVE
CVE
added 2023/01/24 12:0 a.m.318 views

CVE-2022-4054

GitLab CVE-2022-4054 affects versions 9.3–15.4.5, 15.5–15.5.4, and 15.6–15.6.0. A project maintainer could leak a webhook secret token by altering the webhook URL to capture request headers. Remediation: upgrade to GitLab 15.4.6+ (for 9.3–15.4.5), 15.5.5+ (for 15.5–15.5.4), or 15.6.1+ (for 15.6–1...

5.5CVSS5AI score0.00707EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichment
added 2023/01/24 12:0 a.m.8 views

CVE-2022-4054

An issue has been discovered in GitLab affecting all versions starting from 9.3 before 15.4.6, all versions starting from 15.5 before 15.5.5, all versions starting from 15.6 before 15.6.1. It was possible for a project maintainer to leak a webhook secret token by changing the webhook URL to an...

5.5CVSS6.7AI score0.00707EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2022/12/01 12:0 a.m.46 views

FreeBSD : Gitlab -- Multiple Vulnerabilities (3cde510a-7135-11ed-a28b-bff032704f00)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 3cde510a-7135-11ed-a28b-bff032704f00 advisory. - Gitlab reports: DAST API scanner exposes Authorization headers in vulnerabilities Group IP...

9.3CVSS6.2AI score0.01074EPSS
Exploits9References12
Rows per page
Query Builder