Lucene search
+L

7 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 9:18 a.m.8 views

CVE-2021-22175

When requests to the internal network for webhooks are enabled, a server-side request forgery vulnerability in GitLab affecting all versions starting from 10.5 was possible to exploit for an unauthenticated attacker even on a GitLab instance where registration is disabled...

9.8CVSS7AI score0.53372EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2024/05/17 12:0 a.m.20 views

GitLab 10.5 < 13.6.7 / 13.7 < 13.7.7 / 13.8 < 13.8.4 (CVE-2021-22175)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - When requests to the internal network for webhooks are enabled, a server-side request forgery vulnerability in GitLab affecting all versions starting from 10.5 was possible to exploit for an...

9.8CVSS8.7AI score0.53372EPSS
Exploits1References4
NVD
NVD
added 2021/06/11 4:15 p.m.17 views

CVE-2021-22175

When requests to the internal network for webhooks are enabled, a server-side request forgery vulnerability in GitLab affecting all versions starting from 10.5 was possible to exploit for an unauthenticated attacker even on a GitLab instance where registration is disabled...

9.8CVSS0.53372EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2021/06/11 4:15 p.m.31 views

CVE-2021-22175

When requests to the internal network for webhooks are enabled, a server-side request forgery vulnerability in GitLab affecting all versions starting from 10.5 was possible to exploit for an unauthenticated attacker even on a GitLab instance where registration is disabled...

9.8CVSS7.4AI score0.53372EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2021/06/11 3:30 p.m.0 views

CVE-2021-22175

When requests to the internal network for webhooks are enabled, a server-side request forgery vulnerability in GitLab affecting all versions starting from 10.5 was possible to exploit for an unauthenticated attacker even on a GitLab instance where registration is disabled...

6.8CVSS5.6AI score0.53372EPSS
Exploits1References3
CVE
CVE
added 2021/06/11 3:30 p.m.83 views

CVE-2021-22175

GitLab’s SSRF vulnerability (CVE-2021-22175) affects GitLab CE/EE 10.5 and later when internal-network webhook requests are enabled. An unauthenticated attacker could trigger arbitrary internal requests via crafted webhook calls. The connected sources (Nuclei templates and Nessus/NASL entries) co...

9.8CVSS9.2AI score0.53372EPSS
In wildExploits1References4Affected Software1
Debian CVE
Debian CVE
added 2021/06/11 3:30 p.m.41 views

CVE-2021-22175

Removed by vendor...

9.8CVSS7.5AI score0.53372EPSS
Exploits1
Rows per page
Query Builder