Lucene search
K

36 matches found

Tenable Nessus
Tenable Nessus
added 2026/03/01 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2026-1725

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GitLab has remediated an issue in GitLab CE/EE affecting versions from 18.9 before 18.9.1 that could have under certain conditions, allowed an unauthenticated...

7.5CVSS6AI score0.0035EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/03/01 12:0 a.m.6 views

FreeBSD : Gitlab -- vulnerabilities (102a03c9-1316-11f1-93ca-2cf05da270f3)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 102a03c9-1316-11f1-93ca-2cf05da270f3 advisory. Gitlab reports: Cross-site Scripting issue in Mermaid sandbox impacts GitLab CE/EE Denial of...

8CVSS5.9AI score0.00357EPSS
Exploits0References11
FreeBSD
FreeBSD
added 2026/02/25 12:0 a.m.12 views

Gitlab -- vulnerabilities

Gitlab reports: Cross-site Scripting issue in Mermaid sandbox impacts GitLab CE/EE Denial of Service issue in container registry impacts GitLab CE/EE Denial of Service issue in Jira events endpoint impacts GitLab CE/EE Regular Expression Denial of Service issue in GitLab merge requests impacts...

8CVSS5.4AI score0.00357EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-5600

Malware in sbrugna...

8.7CVSS8.5AI score0.68639EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-5544

Malware in sbrugna...

6.5CVSS6.4AI score0.01095EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.11 views

EUVD-2022-43113

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.01216EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2020-13340

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue has been discovered in GitLab affecting all versions prior to 13.2.10, 13.3.7 and 13.4.2: Stored XSS in CI Job Log CVE-2020-13340 Note that Nessus reli...

8.7CVSS7.6AI score0.68639EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 10:10 p.m.5 views

CVE-2022-3759

An issue has been discovered in GitLab CE/EE affecting all versions starting from 14.3 before 15.6.7, all versions starting from 15.7 before 15.7.6, all versions starting from 15.8 before 15.8.1. An attacker may upload a crafted CI job artifact zip file in a project that uses dynamic child...

7.5CVSS6.5AI score0.01216EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/02/05 1:49 p.m.2 views

CVE-2020-13340

An issue has been discovered in GitLab affecting all versions prior to 13.2.10, 13.3.7 and 13.4.2: Stored XSS in CI Job Log...

8.7CVSS5.4AI score0.68639EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2024/12/12 12:0 a.m.6 views

PT-2024-10153 · Gitlab · Gitlab Ce/Ee

Name of the Vulnerable Software and Affected Versions: GitLab CE/EE versions 13.7 through 17.4.6 GitLab CE/EE versions 17.5 through 17.5.4 GitLab CE/EE versions 17.6 through 17.6.2 Description: An issue has been discovered in GitLab CE/EE that may have allowed an attacker with a victim's CI JOB...

6.8CVSS6.9AI score0.00425EPSS
Exploits1References13
Tenable Nessus
Tenable Nessus
added 2024/05/17 12:0 a.m.19 views

GitLab 12.4 < 13.2.10 / 13.3 < 13.3.7 / 13.4 < 13.4.2 (CVE-2020-13340)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An issue has been discovered in GitLab affecting all versions prior to 13.2.10, 13.3.7 and 13.4.2: Stored XSS in CI Job Log CVE-2020-13340 Note that Nessus has not tested for this issue but has instea...

8.7CVSS7.7AI score0.68639EPSS
Exploits0References4
OSV
OSV
added 2024/03/06 11:22 a.m.22 views

BIT-GITLAB-2020-13284

A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4. API Authorization Using Outdated CI Job Token...

6.5CVSS6.3AI score0.01095EPSS
Exploits0References3
OSV
OSV
added 2024/03/06 11:21 a.m.19 views

BIT-GITLAB-2020-13340

An issue has been discovered in GitLab affecting all versions prior to 13.2.10, 13.3.7 and 13.4.2: Stored XSS in CI Job Log...

8.7CVSS8AI score0.68639EPSS
Exploits0References4
Veracode
Veracode
added 2023/07/22 9:30 p.m.22 views

Denial Of Service (DoS)

gitlab is vulnerable to Denial of Service DoS attacks. An attacker might use a forged CI job artifact zip file in a project that employs dynamic child pipelines to cause a sidekiq task to use a large amount of RAM. This may result in a Denial of Service on GitLab instances where Sidekiq is...

7.5CVSS6.4AI score0.01216EPSS
Exploits0References4Affected Software1
Prion
Prion
added 2023/02/13 11:15 p.m.13 views

Denial of service

An issue has been discovered in GitLab CE/EE affecting all versions starting from 14.3 before 15.6.7, all versions starting from 15.7 before 15.7.6, all versions starting from 15.8 before 15.8.1. An attacker may upload a crafted CI job artifact zip file in a project that uses dynamic child...

5CVSS7.3AI score0.01216EPSS
Exploits0References3Affected Software1
UbuntuCve
UbuntuCve
added 2023/02/13 11:15 p.m.22 views

CVE-2022-3759

An issue has been discovered in GitLab CE/EE affecting all versions starting from 14.3 before 15.6.7, all versions starting from 15.7 before 15.7.6, all versions starting from 15.8 before 15.8.1. An attacker may upload a crafted CI job artifact zip file in a project that uses dynamic child...

7.5CVSS6.9AI score0.01216EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2023/02/13 12:0 a.m.4 views

CVE-2022-3759

An issue has been discovered in GitLab CE/EE affecting all versions starting from 14.3 before 15.6.7, all versions starting from 15.7 before 15.7.6, all versions starting from 15.8 before 15.8.1. An attacker may upload a crafted CI job artifact zip file in a project that uses dynamic child...

4.3CVSS7.6AI score0.01216EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2023/02/13 12:0 a.m.24 views

CVE-2022-3759

Removed by vendor...

7.5CVSS7.1AI score0.01216EPSS
Exploits0
FreeBSD
FreeBSD
added 2023/01/31 12:0 a.m.23 views

Gitlab -- Multiple Vulnerabilities

Gitlab reports: Denial of Service via arbitrarily large Issue descriptions CSRF via file upload allows an attacker to take over a repository Sidekiq background job DoS by uploading malicious CI job artifact zips Sidekiq background job DoS by uploading a malicious Helm package...

6.5CVSS7.1AI score0.01247EPSS
Exploits0References1
NVD
NVD
added 2020/10/08 2:15 p.m.10 views

CVE-2020-13340

An issue has been discovered in GitLab affecting all versions prior to 13.2.10, 13.3.7 and 13.4.2: Stored XSS in CI Job Log...

8.7CVSS0.68639EPSS
Exploits0References3
Rows per page
Query Builder