4 matches found
CVE-2023-1965
An issue has been discovered in GitLab EE affecting all versions starting from 14.2 before 15.9.6, all versions starting from 15.10 before 15.10.5, all versions starting from 15.11 before 15.11.1. Lack of verification on RelayState parameter allowed a maliciously crafted URL to obtain access toke...
CVE-2023-1965
GitLab EE is affected: versions 14.2–15.9.5, 15.10–15.10.4, and 15.11–15.11.0 have a lack of verification on the RelayState parameter, allowing a maliciously crafted URL to obtain access tokens for 3rd party Group SAML SSO logins. This feature is not enabled by default. Impact described across mu...
GitLab 14.2 < 15.9.6 / 15.10 < 15.10.5 / 15.11 < 15.11.1 (CVE-2023-1965)
The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An issue has been discovered in GitLab EE affecting all versions starting from 14.2 before 15.9.6, all versions starting from 15.10 before 15.10.5, all versions starting from 15.11 before 15.11.1. Lac...
FreeBSD : Gitlab -- Multiple Vulnerabilities (4ffcccae-e924-11ed-9c88-001b217b3468)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 4ffcccae-e924-11ed-9c88-001b217b3468 advisory. - An issue has been discovered in GitLab affecting all versions before 15.9.6, all versions...