Lucene search
K

35 matches found

ATTACKERKB
ATTACKERKB
added 2026/02/18 8:44 p.m.4 views

CVE-2026-1999

A Server-Side Request Forgery SSRF vulnerability was identified in GitHub Enterprise Server that allowed an authenticated user to access internal services bound to loopback or unspecified addresses, potentially disrupting background job processing, accessing administrative endpoints, metrics, and...

7.2CVSS5.9AI score0.00235EPSS
Exploits0References10Affected Software1
RedhatCVE
RedhatCVE
added 2026/01/07 9:17 a.m.8 views

CVE-2025-1250

An issue has been discovered in GitLab CE/EE affecting all versions from 15.0 before 18.1.6, 18.2 before 18.2.6, and 18.3 before 18.3.2 that could have allowed an authenticated user to stall background job processing by sending specially crafted commit messages, merge request descriptions, or not...

6.5CVSS6.5AI score0.00424EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-26579

Malware in sbrugna...

8CVSS7.1AI score0.00753EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-3286

Malicious code in bioql PyPI...

6.3CVSS6.3AI score0.00484EPSS
Exploits1References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-3287

Malicious code in bioql PyPI...

6.3CVSS6.4AI score0.00514EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-29018

Malicious code in bioql PyPI...

6.5CVSS6.3AI score0.00424EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2025-1582

Malicious code in bioql PyPI...

4.3CVSS6.3AI score0.00358EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2023-3207

Malicious code in bioql PyPI...

6.3CVSS6.4AI score0.00526EPSS
Exploits0References6
OSV
OSV
added 2025/09/16 9:7 a.m.7 views

BIT-GITLAB-2025-1250 Allocation of Resources Without Limits or Throttling in GitLab

An issue has been discovered in GitLab CE/EE affecting all versions from 15.0 before 18.1.6, 18.2 before 18.2.6, and 18.3 before 18.3.2 that could have allowed an authenticated user to stall background job processing by sending specially crafted commit messages, merge request descriptions, or not...

6.5CVSS6.8AI score0.00424EPSS
Exploits0References4
NVD
NVD
added 2025/09/12 6:15 a.m.6 views

CVE-2025-1250

An issue has been discovered in GitLab CE/EE affecting all versions from 15.0 before 18.1.6, 18.2 before 18.2.6, and 18.3 before 18.3.2 that could have allowed an authenticated user to stall background job processing by sending specially crafted commit messages, merge request descriptions, or not...

6.5CVSS0.00424EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/09/12 6:6 a.m.10 views

CVE-2025-1250 Allocation of Resources Without Limits or Throttling in GitLab

An issue has been discovered in GitLab CE/EE affecting all versions from 15.0 before 18.1.6, 18.2 before 18.2.6, and 18.3 before 18.3.2 that could have allowed an authenticated user to stall background job processing by sending specially crafted commit messages, merge request descriptions, or not...

6.5CVSS0.00424EPSS
Exploits0References3
OSV
OSV
added 2025/09/12 6:6 a.m.5 views

CVE-2025-1250 Allocation of Resources Without Limits or Throttling in GitLab

An issue has been discovered in GitLab CE/EE affecting all versions from 15.0 before 18.1.6, 18.2 before 18.2.6, and 18.3 before 18.3.2 that could have allowed an authenticated user to stall background job processing by sending specially crafted commit messages, merge request descriptions, or not...

6.5CVSS6.4AI score0.00424EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2025/09/12 6:6 a.m.2 views

CVE-2025-1250 Allocation of Resources Without Limits or Throttling in GitLab

An issue has been discovered in GitLab CE/EE affecting all versions from 15.0 before 18.1.6, 18.2 before 18.2.6, and 18.3 before 18.3.2 that could have allowed an authenticated user to stall background job processing by sending specially crafted commit messages, merge request descriptions, or not...

6.5CVSS6.4AI score0.00424EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/09/12 12:0 a.m.5 views

PT-2025-37290

Name of the Vulnerable Software and Affected Versions: GitLab CE/EE versions 15.0 through 18.1.5 GitLab CE/EE versions 18.2 through 18.2.5 GitLab CE/EE versions 18.3 through 18.3.1 Description: An issue exists in GitLab CE/EE that could allow an authenticated user to disrupt background job...

6.5CVSS6.3AI score0.00424EPSS
Exploits0References10
RedhatCVE
RedhatCVE
added 2025/05/23 11:56 a.m.10 views

CVE-2025-0290

An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.0 prior to 17.5.5, from 17.6 prior to 17.6.3, and from 17.7 prior to 17.7.1. Under certain conditions, processing of CI artifacts metadata could cause background jobs to become unresponsive...

4.3CVSS6.4AI score0.00358EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 2:50 a.m.5 views

CVE-2023-32750

Pydio Cells through 4.1.2 allows SSRF. For longer running processes, Pydio Cells allows for the creation of jobs, which are run in the background. The job "remote-download" can be used to cause the backend to send a HTTP GET request to a specified URL and save the response to a new file. The...

6.5CVSS6.8AI score0.03846EPSS
Exploits4References1
OSV
OSV
added 2025/01/30 7:13 p.m.126 views

BIT-GITLAB-2025-0290 Loop with Unreachable Exit Condition ('Infinite Loop') in GitLab

An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.0 prior to 17.5.5, from 17.6 prior to 17.6.3, and from 17.7 prior to 17.7.1. Under certain conditions, processing of CI artifacts metadata could cause background jobs to become unresponsive...

4.3CVSS4.1AI score0.00358EPSS
Exploits0References2
NVD
NVD
added 2025/01/28 9:15 a.m.28 views

CVE-2025-0290

An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.0 prior to 17.5.5, from 17.6 prior to 17.6.3, and from 17.7 prior to 17.7.1. Under certain conditions, processing of CI artifacts metadata could cause background jobs to become unresponsive...

4.3CVSS0.00358EPSS
Exploits0References1
OSV
OSV
added 2025/01/28 9:15 a.m.6 views

UBUNTU-CVE-2025-0290

An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.0 prior to 17.5.5, from 17.6 prior to 17.6.3, and from 17.7 prior to 17.7.1. Under certain conditions, processing of CI artifacts metadata could cause background jobs to become unresponsive...

4.3CVSS5.7AI score0.00358EPSS
Exploits0References3
CVE
CVE
added 2025/01/28 8:45 a.m.437 views

CVE-2025-0290

CVE-2025-0290 affects GitLab CE/EE since 15.0 up to but not including 17.5.5, from 17.6 up to 17.6.3, and from 17.7 up to 17.7.1. Under certain conditions, processing of CI artifacts metadata could cause background jobs to become unresponsive. The connected sources indicate fixed versions: upgrad...

4.3CVSS6.6AI score0.00358EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder