5 matches found
CVE-2024-11274
An issue was discovered in GitLab CE/EE affecting all versions starting from 16.1 prior to 17.4.6, starting from 17.5 prior to 17.5.4, and starting from 17.6 prior to 17.6.2, injection of NEL headers in k8s proxy response could lead to session data exfiltration...
CVE-2024-11274 vulnerabilities
Vulnerabilities for packages: gitlab-cng-fips...
CVE-2024-11274 URL Redirection to Untrusted Site ('Open Redirect') in GitLab
An issue was discovered in GitLab CE/EE affecting all versions starting from 16.1 prior to 17.4.6, starting from 17.5 prior to 17.5.4, and starting from 17.6 prior to 17.6.2, injection of NEL headers in k8s proxy response could lead to session data exfiltration...
GitLab 16.1 < 17.4.6 / 17.5 < 17.5.4 / 17.6 < 17.6.2 (CVE-2024-11274)
The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - URL Redirection to Untrusted Site 'Open Redirect' in GitLab CVE-2024-11274 Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number...
CVE-2024-11274
creationtimestamp| type| source ---|---|--- 2024-12-11 16:30:39+00:00| seen| https://infosec.exchange/users/screaminggoat/statuses/113635140492482846...