Lucene search
K

6 matches found

Tenable Nessus
Tenable Nessus
added 2024/01/03 12:0 a.m.38 views

GitLab 13.2 < 13.7.9 / 13.8 < 13.8.6 / 13.9 < 13.9.4 (CVE-2021-22192)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.2 allowing unauthorized authenticated users to execute arbitrary code on the server. CVE-2021-22192 Note that Nessu...

9.9CVSS8.8AI score0.13108EPSS
Exploits1References4
ArchLinux
ArchLinux
added 2021/03/25 12:0 a.m.207 views

[ASA-202103-13] gitlab: arbitrary code execution

Arch Linux Security Advisory ASA-202103-13 ========================================== Severity: Critical Date : 2021-03-25 CVE-ID : CVE-2021-22192 Package : gitlab Type : arbitrary code execution Remote : Yes Link : https://security.archlinux.org/AVG-1710 Summary ======= The package gitlab before...

9.9CVSS1.7AI score0.13108EPSS
Exploits1References6
NVD
NVD
added 2021/03/24 5:15 p.m.28 views

CVE-2021-22192

An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.2 allowing unauthorized authenticated users to execute arbitrary code on the server...

9.9CVSS0.13108EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2021/03/24 5:15 p.m.26 views

CVE-2021-22192

An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.2 allowing unauthorized authenticated users to execute arbitrary code on the server...

9.9CVSS7.1AI score0.13108EPSS
Exploits1References4
CVE
CVE
added 2021/03/24 4:36 p.m.100 views

CVE-2021-22192

CVE-2021-22192 affects GitLab CE/EE (from version 13.2 onward): an authenticated user can execute arbitrary code on the server due to unsafe/unsupported markdown rendering. Public sources describe RCE via user-controlled Markdown rendering options; OSS and security advisories confirm the vulnerab...

9.9CVSS8.5AI score0.13108EPSS
Exploits1References3Affected Software1
seebug.org
seebug.org
added 2021/03/18 12:0 a.m.87 views

GitLab 未授权RCE漏洞(CVE-2021-22192)

When rendering wiki content with certain extensions such as .rmd, renderwikicontent will call othermarkupunsafe which will end up calling GitHub::Markup.render from the github-markup gem. Files with any extension can be uploaded by checking out the wiki with git, commiting the files and pushing t...

6.5CVSS9.5AI score0.13108EPSS
Exploits1
Rows per page
Query Builder