Lucene search
K

5 matches found

Veracode
Veracode
added 2023/07/22 9:30 p.m.22 views

Denial Of Service (DoS)

gitlab is vulnerable to Denial of Service DoS attacks. An attacker might use a forged CI job artifact zip file in a project that employs dynamic child pipelines to cause a sidekiq task to use a large amount of RAM. This may result in a Denial of Service on GitLab instances where Sidekiq is...

7.5CVSS6.4AI score0.01216EPSS
Exploits0References4Affected Software1
Prion
Prion
added 2023/02/13 11:15 p.m.14 views

Denial of service

An issue has been discovered in GitLab CE/EE affecting all versions starting from 14.3 before 15.6.7, all versions starting from 15.7 before 15.7.6, all versions starting from 15.8 before 15.8.1. An attacker may upload a crafted CI job artifact zip file in a project that uses dynamic child...

5CVSS7.3AI score0.01216EPSS
Exploits0References3Affected Software1
UbuntuCve
UbuntuCve
added 2023/02/13 11:15 p.m.23 views

CVE-2022-3759

An issue has been discovered in GitLab CE/EE affecting all versions starting from 14.3 before 15.6.7, all versions starting from 15.7 before 15.7.6, all versions starting from 15.8 before 15.8.1. An attacker may upload a crafted CI job artifact zip file in a project that uses dynamic child...

7.5CVSS6.9AI score0.01216EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2023/02/13 12:0 a.m.2 views

PT-2023-13544 · Gitlab · Gitlab Ce/Ee +1

Name of the Vulnerable Software and Affected Versions: GitLab CE/EE versions 14.3 through 15.6.7 GitLab CE/EE versions 15.7 through 15.7.6 GitLab CE/EE versions 15.8 through 15.8.1 Description: An issue has been discovered in GitLab CE/EE where an attacker may upload a crafted CI job artifact zip...

7.5CVSS7.1AI score0.01216EPSS
Exploits0References11
Vulnrichment
Vulnrichment
added 2023/02/13 12:0 a.m.4 views

CVE-2022-3759

An issue has been discovered in GitLab CE/EE affecting all versions starting from 14.3 before 15.6.7, all versions starting from 15.7 before 15.7.6, all versions starting from 15.8 before 15.8.1. An attacker may upload a crafted CI job artifact zip file in a project that uses dynamic child...

4.3CVSS7.6AI score0.01216EPSS
Exploits0References3
Rows per page
Query Builder