CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

OSV•added 2024/03/06 11:10 a.m.•21 views

BIT-GITLAB-2023-1733

A denial of service condition exists in the Prometheus server bundled with GitLab affecting all versions from 11.10 to 15.8.5, 15.9 to 15.9.4 and 15.10 to 15.10.1...

7.5CVSS6AI score0.01671EPSS

Exploits0References4

Vulnrichment•added 2023/11/14 11:18 p.m.•7 views

CVE-2023-39337

A security vulnerability in EPMM Versions 11.10, 11.9 and 11.8 older allows a threat actor with knowledge of an enrolled device identifier to access and extract sensitive information, including device and environment configuration details, as well as secrets. This vulnerability poses a serious...

9.4AI score0.00897EPSS

Exploits0References1

CNNVD•added 2023/10/26 12:0 a.m.•2 views

TONGDA Office Anywhere SQL Injection Vulnerability

TONGDA Office Anywhere is a collaborative office OA system. A SQL injection vulnerability exists in TONGDA Office Anywhere V11.10 and earlier, v2017, which originates from an unknown function /manage/deletequery.php in the component General News, which causes an SQL injection via the parameter...

9.8CVSS8AI score0.00053EPSS

Exploits1References4

OSV•added 2023/08/15 4:15 p.m.•0 views

CVE-2023-35082

An authentication bypass vulnerability in Ivanti EPMM 11.10 and older, allows unauthorized users to access restricted functionality or resources of the application without proper authentication. This vulnerability is unique to CVE-2023-35078 announced earlier...

9.8CVSS5.8AI score0.94402EPSS

Exploits2References2

Positive Technologies•added 2023/08/02 12:0 a.m.•3 views

PT-2023-9264

Name of the Vulnerable Software and Affected Versions Ivanti Endpoint Manager Mobile EPMM versions 11.10 and older Description The issue is related to an authentication bypass vulnerability in Ivanti EPMM, which allows unauthorized users to access restricted functionality or resources of the...

10CVSS9.6AI score0.94402EPSS

Exploits2References81

NVD•added 2023/04/05 8:15 p.m.•14 views

CVE-2023-1733

A denial of service condition exists in the Prometheus server bundled with GitLab affecting all versions from 11.10 to 15.8.5, 15.9 to 15.9.4 and 15.10 to 15.10.1...

7.5CVSS5.9AI score0.01671EPSS

Exploits0References3

Debian CVE•added 2023/04/05 12:0 a.m.•19 views

CVE-2023-1733

Removed by vendor...

7.5CVSS7.1AI score0.01671EPSS

Exploits0

CNNVD•added 2023/03/31 12:0 a.m.•2 views

GitLab 安全漏洞

GitLab is an open source, end-to-end software development platform from GitLab, Inc. with built-in version control, issue tracking, code review, CI/CD Continuous Integration and Continuous Delivery and other features. A security vulnerability exists in GitLab that stems from the presence of an...

3.7CVSS5AI score0.0055EPSS

Exploits0References5

SUSE CVE•added 2023/02/15 4:8 a.m.•4 views

SUSE CVE-2019-15724

An issue was discovered in GitLab Community and Enterprise Edition 11.10 through 12.2.1. Label descriptions are vulnerable to HTML injection...

6.1CVSS6.2AI score0.00115EPSS

Exploits0References3

OSV•added 2022/10/17 4:15 p.m.•0 views

UBUNTU-CVE-2022-2992

A vulnerability in GitLab CE/EE affecting all versions from 11.10 prior to 15.1.6, 15.2 to 15.2.4, 15.3 to 15.3.2 allows an authenticated user to achieve remote code execution via the Import from GitHub API endpoint...

9.9CVSS7.8AI score0.91193EPSS

Exploits5References3

Positive Technologies•added 2020/04/08 12:0 a.m.•4 views

PT-2020-12464 · Gitlab · Gitlab Ce/Ee +1

Name of the Vulnerable Software and Affected Versions: GitLab EE/CE versions 11.10 through 12.9 Description: The issue is related to the leaking of information on restricted CI pipelines metrics to unauthorized users. Recommendations: For GitLab EE/CE versions 11.10 through 12.9, update to a...

4.3CVSS4.2AI score0.00069EPSS

Exploits0References7

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by