CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

NVD•added 2023/06/07 5:15 p.m.•13 views

CVE-2023-0121

A denial of service issue was discovered in GitLab CE/EE affecting all versions starting from 13.2.4 before 15.10.8, all versions starting from 15.11 before 15.11.7, all versions starting from 16.0 before 16.0.2 which allows an attacker to cause high resource consumption using malicious test repo...

7.5CVSS6.5AI score0.01243EPSS

Prion•added 2023/06/07 5:15 p.m.•16 views

Design/Logic Flaw

An issue has been discovered in GitLab CE/EE affecting all versions starting from 8.7 before 15.10.8, all versions starting from 15.11 before 15.11.7, all versions starting from 16.0 before 16.0.2. A Regular Expression Denial of Service was possible via sending crafted payloads to the...

5CVSS7.2AI score0.01325EPSS

Prion•added 2023/06/07 5:15 p.m.•17 views

Denial of service

5CVSS7AI score0.01243EPSS

Prion•added 2023/06/07 5:15 p.m.•19 views

Open redirect

An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.4 before 15.10.8, all versions starting from 15.11 before 15.11.7, all versions starting from 16.0 before 16.0.2. Open redirection was possible via HTTP response splitting in the NPM package API...

4.3CVSS4.6AI score0.00757EPSS

Prion•added 2023/06/07 5:15 p.m.•14 views

Design/Logic Flaw

5CVSS7.2AI score0.01325EPSS

Prion•added 2023/06/07 4:15 p.m.•28 views

Cross site scripting

An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.11 before 15.11.7, all versions starting from 16.0 before 16.0.2. A specially crafted merge request could lead to a stored XSS on the client side which allows attackers to perform arbitrary actions on behalf of...

4.9CVSS5.2AI score0.96058EPSS

UbuntuCve•added 2023/06/07 4:15 p.m.•25 views

CVE-2023-2442

8.7CVSS6.8AI score0.96058EPSS

Exploits0References4

OSV•added 2023/06/07 4:15 p.m.•2 views

UBUNTU-CVE-2023-2442

8.7CVSS5.9AI score0.96058EPSS

Exploits0References5

Cvelist•added 2023/06/07 12:0 a.m.•21 views

CVE-2023-2015

An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.8 before 15.10.8, all versions starting from 15.11 before 15.11.7, all versions starting from 16.0 before 16.0.2. A reflected XSS was possible when creating new abuse reports which allows attackers to perform...

4.4CVSS6.3AI score0.00612EPSS

Debian CVE•added 2023/06/07 12:0 a.m.•24 views

CVE-2023-2199

Removed by vendor...

7.5CVSS7.1AI score0.01325EPSS

Debian CVE•added 2023/06/07 12:0 a.m.•13 views

CVE-2023-2198

Removed by vendor...

7.5CVSS7.1AI score0.01325EPSS

Debian CVE•added 2023/06/07 12:0 a.m.•23 views

CVE-2023-0121

Removed by vendor...

7.5CVSS7.1AI score0.01243EPSS

Debian CVE•added 2023/06/07 12:0 a.m.•28 views

CVE-2023-0508

Removed by vendor...

4.3CVSS5.8AI score0.00757EPSS

Debian CVE•added 2023/06/07 12:0 a.m.•21 views

CVE-2023-2013

Removed by vendor...

4.3CVSS5.8AI score0.0069EPSS

Cvelist•added 2023/06/07 12:0 a.m.•25 views

CVE-2023-2199

7.5CVSS7.5AI score0.01325EPSS

CVE•added 2023/06/07 12:0 a.m.•71 views

CVE-2023-2013

CVE-2023-2013 affects GitLab CE/EE with versions starting from 1.2 up to 15.10.8, versions from 15.11 up to 15.11.7, and 16.0 up to 16.0.2. The issue arises from a discrepancy between the web application display and the Git CLI, which can be abused to social engineer victims into cloning non-trus...

4.3CVSS4.2AI score0.0069EPSS