Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 2:55 a.m.6 views

CVE-2023-1965

An issue has been discovered in GitLab EE affecting all versions starting from 14.2 before 15.9.6, all versions starting from 15.10 before 15.10.5, all versions starting from 15.11 before 15.11.1. Lack of verification on RelayState parameter allowed a maliciously crafted URL to obtain access toke...

6.8CVSS6.8AI score0.00431EPSS
Exploits0References1
CVE
CVE
added 2023/05/03 12:0 a.m.71 views

CVE-2023-1965

GitLab EE is affected: versions 14.2–15.9.5, 15.10–15.10.4, and 15.11–15.11.0 have a lack of verification on the RelayState parameter, allowing a maliciously crafted URL to obtain access tokens for 3rd party Group SAML SSO logins. This feature is not enabled by default. Impact described across mu...

6.8CVSS5.9AI score0.00431EPSS
Exploits0References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2023/05/02 12:0 a.m.30 views

GitLab 14.2 < 15.9.6 / 15.10 < 15.10.5 / 15.11 < 15.11.1 (CVE-2023-1965)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An issue has been discovered in GitLab EE affecting all versions starting from 14.2 before 15.9.6, all versions starting from 15.10 before 15.10.5, all versions starting from 15.11 before 15.11.1. Lac...

6.8CVSS6.4AI score0.00431EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2023/05/02 12:0 a.m.27 views

FreeBSD : Gitlab -- Multiple Vulnerabilities (4ffcccae-e924-11ed-9c88-001b217b3468)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 4ffcccae-e924-11ed-9c88-001b217b3468 advisory. - An issue has been discovered in GitLab affecting all versions before 15.9.6, all versions...

8.8CVSS6.7AI score0.01039EPSS
Exploits1References11
Rows per page
Query Builder