Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

Tenable Nessus
Tenable Nessusadded 2025/12/03 12:0 a.m.5 views

FreeBSD : Gitlab -- vulnerabilities (4530fc9f-cb47-11f0-85d8-2cf05da270f3)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 4530fc9f-cb47-11f0-85d8-2cf05da270f3 advisory. Gitlab reports: Race condition issue in CI/CD cache impacts GitLab CE/EE Denial of Service iss...

7.7CVSS6.1AI score0.00112EPSS
Exploits0References8
Tenable Nessus
Tenable Nessusadded 2024/01/03 12:0 a.m.25 views

GitLab 1.0.2 < 14.8.6 / 14.9.0 < 14.9.4 / 14.10.0 < 14.10.1 (CVE-2022-1423)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - Improper access control in the CI/CD cache mechanism in GitLab CE/EE affecting all versions starting from 1.0.2 before 14.8.6, all versions from 14.9.0 before 14.9.4, and all versions from 14.10.0...

8.8CVSS8.3AI score0.00093EPSS
Exploits0References4
Veracode
Veracodeadded 2023/07/23 8:25 a.m.16 views

Remote Code Execution (RCE)

gitlab is vulnerable to Remote Code Execution RCE. The vulnerability exists due to the improper access control in the CI/CD cache mechanism of the library, which allows an attacker with developer privileges to perform cache poisoning leading to arbitrary code execution in protected branches...

8.8CVSS8.2AI score0.00093EPSS
Exploits0References4Affected Software1
Prion
Prionadded 2022/05/19 6:15 p.m.19 views

Improper access control

Improper access control in the CI/CD cache mechanism in GitLab CE/EE affecting all versions starting from 1.0.2 before 14.8.6, all versions from 14.9.0 before 14.9.4, and all versions from 14.10.0 before 14.10.1 allows a malicious actor with Developer privileges to perform cache poisoning leading...

6.5CVSS8.8AI score0.00093EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologiesadded 2022/05/19 12:0 a.m.1 views

PT-2022-13876 · Gitlab · Gitlab Ce/Ee +1

Name of the Vulnerable Software and Affected Versions: GitLab CE/EE versions 1.0.2 through 14.8.5 GitLab CE/EE versions 14.9.0 through 14.9.3 GitLab CE/EE versions 14.10.0 Description: The issue is related to improper access control in the CI/CD cache mechanism, allowing a malicious actor with...

8.8CVSS8.8AI score0.00093EPSS
Exploits0References8
Tenable Nessus
Tenable Nessusadded 2022/05/06 12:0 a.m.53 views

GitLab 1.0.2 < 14.8.6 Multiple Vulnerabilities

According to its self-reported version, the instance of GitLab running on the remote web server is 1.0.2 prior to 14.8.6. It is, therefore, affected by the following vulnerabilities: - An information disclosure vulnerability exists in GitLab CE/EE due to missing input masking. An authenticated,...

8.8CVSS7.5AI score0.00209EPSS
Exploits1References4
Rows per page
Query Builder