Lucene search
K

10 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-49397

Malicious code in bioql PyPI...

8.1CVSS6.3AI score0.00408EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/08/26 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2024-8754

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue has been discovered in GitLab EE/CE affecting all versions from 16.9.7 prior to 17.1.7, 17.2 prior to 17.2.5, and 17.3 prior to 17.3.2. An improper inp...

8.1CVSS5.7AI score0.00408EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 7:20 a.m.2 views

CVE-2024-8754

An issue has been discovered in GitLab EE/CE affecting all versions from 16.9.7 prior to 17.1.7, 17.2 prior to 17.2.5, and 17.3 prior to 17.3.2. An improper input validation error allows attacker to squat on accounts via linking arbitrary unclaimed provider identities when JWT authentication is...

8.1CVSS7.2AI score0.00408EPSS
Exploits0References1
OSV
OSV
added 2024/09/14 7:5 a.m.37 views

BIT-GITLAB-2024-8754 External Control of Critical State Data in GitLab

An issue has been discovered in GitLab EE/CE affecting all versions from 16.9.7 prior to 17.1.7, 17.2 prior to 17.2.5, and 17.3 prior to 17.3.2. An improper input validation error allows attacker to squat on accounts via linking arbitrary unclaimed provider identities when JWT authentication is...

8.1CVSS6.9AI score0.00408EPSS
Exploits0References2
NVD
NVD
added 2024/09/12 5:15 p.m.26 views

CVE-2024-8754

An issue has been discovered in GitLab EE/CE affecting all versions from 16.9.7 prior to 17.1.7, 17.2 prior to 17.2.5, and 17.3 prior to 17.3.2. An improper input validation error allows attacker to squat on accounts via linking arbitrary unclaimed provider identities when JWT authentication is...

8.1CVSS0.00408EPSS
Exploits0References1
OSV
OSV
added 2024/09/12 5:15 p.m.4 views

UBUNTU-CVE-2024-8754

An issue has been discovered in GitLab EE/CE affecting all versions from 16.9.7 prior to 17.1.7, 17.2 prior to 17.2.5, and 17.3 prior to 17.3.2. An improper input validation error allows attacker to squat on accounts via linking arbitrary unclaimed provider identities when JWT authentication is...

8.1CVSS5.9AI score0.00408EPSS
Exploits0References3
CVE
CVE
added 2024/09/12 5:2 p.m.110 views

CVE-2024-8754

GitLab CVE-2024-8754 affects GitLab EE/CE versions 16.9.7–16.9.x, 17.1.x, 17.2.x, and 17.3.x prior to patch releases. The issue is an improper input validation that allows account squatting by linking arbitrary unclaimed provider identities when JWT authentication is enabled. Affected versions re...

8.1CVSS7AI score0.00408EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2024/09/12 5:2 p.m.16 views

CVE-2024-8754 External Control of Critical State Data in GitLab

An issue has been discovered in GitLab EE/CE affecting all versions from 16.9.7 prior to 17.1.7, 17.2 prior to 17.2.5, and 17.3 prior to 17.3.2. An improper input validation error allows attacker to squat on accounts via linking arbitrary unclaimed provider identities when JWT authentication is...

6.4CVSS6.8AI score0.00408EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2024/09/12 5:2 p.m.12 views

CVE-2024-8754

Removed by vendor...

8.1CVSS5.8AI score0.00408EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/09/12 12:0 a.m.14 views

GitLab 16.9.7 < 17.1.7 / 17.2 < 17.2.5 / 17.3 < 17.3.2 (CVE-2024-8754)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An issue has been discovered in GitLab EE/CE affecting all versions from 16.9.7 prior to 17.1.7, 17.2 prior to 17.2.5, and 17.3 prior to 17.3.2. An improper input validation error allows attacker to...

8.1CVSS5.8AI score0.00408EPSS
Exploits0References3
Rows per page
Query Builder