2483 matches found
CVE-2024-1485 vulnerabilities
Vulnerabilities for packages: gitlab-rails-ce, gitlab-rails-ce-fips...
CVE-2026-54297 vulnerabilities
Vulnerabilities for packages: ruby3.3-faraday, gitlab-rails-ce-fips, logstash, gitlab-rails-ce, kube-fluentd-operator, logstash-fips, gitlab-cng...
GHSA-98M9-HRRM-R99R vulnerabilities
Vulnerabilities for packages: ruby3.3-faraday, gitlab-rails-ce-fips, logstash, gitlab-rails-ce, kube-fluentd-operator, logstash-fips, gitlab-cng...
CVE-2026-10850
Plane CE 1.3.1 allows a low-privileged project member to submit arbitrary HTML/JS in the descriptionhtml field when creating an intake work item through the API v1 intake endpoint...
EUVD-2026-37732
Plane CE 1.3.1 allows a low-privileged project member to submit arbitrary HTML/JS in the descriptionhtml field when creating an intake work item through the API v1 intake endpoint...
Linux Distros Unpatched Vulnerability : CVE-2026-9204
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.10 before 18.10.8, 18.11 before 18.11.5, and 19.0 before 19.0.2 that under certain...
CVE-2026-10733
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.0 before 18.10.8, 18.11 before 18.11.5, and 19.0 before 19.0.2 that could have allowed an authenticated user to cause denial of service on the CI/CD Catalog page due to improper sanitization...
CVE-2026-1500 Allocation of Resources Without Limits or Throttling in GitLab
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.10 before 18.10.8, 18.11 before 18.11.5, and 19.0 before 19.0.2 that under certain conditions could have allowed an authenticated user to cause denial of service due to uncontrolled resource consumption when processing ...
CVE-2026-3553
GitLab CE/EE was vulnerable to an incorrect authorization check that could allow an authenticated user to view confidential issue details. Affected versions were all 12.0 before 18.10.8, 18.11 before 18.11.5, and 19.0 before 19.0.2. The issue has been remediated in patch releases: GitLab 18.10.8,...
GHSA-46Q3-7GV7-QMGG vulnerabilities
Vulnerabilities for packages: ruby3.2-rails, gitlab-rails-ce-fips, ruby4.0-rails, ruby3.3-rails, logstash, ruby3.4-rails, gitlab-rails-ce, kube-fluentd-operator, logstash-fips, kube-logging-operator...
GHSA-8P34-64R3-MWG8 vulnerabilities
Vulnerabilities for packages: ruby3.2-rails, gitlab-rails-ce-fips, ruby4.0-rails, ruby3.3-rails, logstash, ruby3.4-rails, gitlab-rails-ce, kube-fluentd-operator, logstash-fips, kube-logging-operator...
CVE-2026-47241 vulnerabilities
Vulnerabilities for packages: ruby3.2-rails, gitlab-rails-ce-fips, ruby4.0-rails, ruby3.3-rails, logstash, ruby3.4-rails, gitlab-rails-ce, kube-fluentd-operator, logstash-fips, kube-logging-operator...
GHSA-C4FP-CXRR-MJ66 vulnerabilities
Vulnerabilities for packages: ruby3.2-rails, gitlab-rails-ce-fips, ruby4.0-rails, ruby3.3-rails, logstash, ruby3.4-rails, gitlab-rails-ce, kube-fluentd-operator, logstash-fips, kube-logging-operator...
Fedora 45 : singularity-ce (2026-d32912dc74)
The remote Fedora 45 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-d32912dc74 advisory. Automatic update for singularity-ce-4.4.2-1.fc45. Changelog Wed Jun 10 2026 David Trudgian - 4.4.2-1 - Upgrade to 4.4.2 upstream version. - Fix...
CVE-2026-47737 vulnerabilities
Vulnerabilities for packages: gitlab-cng, gitlab-rails-ce, gitlab-rails-ce-fips...
CVE-2026-47736 vulnerabilities
Vulnerabilities for packages: gitlab-cng, gitlab-rails-ce, gitlab-rails-ce-fips...
CVE-2026-46303
The CVE-2026-46303 vulnerability affects the Linux kernel isofs Rock Ridge CE handling. rock_continue() could use rs->cont_extent without validating the block number, allowing potential reads of data from an adjacent filesystem via sb_bread() on crafted ISO mounts. The issue was addressed by p...
PT-2026-47374
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified openSUSE Tumbleweed versions prior to kernel-devel-7.0.12-1.1 Description The rock continue function in the isofs component reads the rs-cont extent from the Rock Ridge CE record and passes it to sb...
Linux kernel 安全漏洞
The Linux kernel is the kernel used by the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the lack of verification of volume sizes during the Rock Ridge CE extension in isofs. This...
CVE-2026-3254
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.11 before 18.11.1 that under certain conditions could have allowed an authenticated user to load unauthorized content into another user's browser due to improper input validation in the Mermaid sandbox...