3 matches found
CVE-2021-39867
In all versions of GitLab CE/EE since version 8.15, a DNS rebinding vulnerability in Gitea Importer may be exploited by an attacker to trigger Server Side Request Forgery SSRF attacks...
GitLab 8.15 < 14.1.7 / 14.2 < 14.2.5 / 14.3 < 14.3.1 (CVE-2021-39867)
The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - In all versions of GitLab CE/EE since version 8.15, a DNS rebinding vulnerability in Gitea Importer may be exploited by an attacker to trigger Server Side Request Forgery SSRF attacks. CVE-2021-39867...
CVE-2021-39867
CVE-2021-39867 affects GitLab CE/EE since v8.15, due to a DNS rebinding vulnerability in the Gitea Importer that can enable Server-Side Request Forgery (SSRF). Impact is partial confidentiality/integrity and network-exposed risk; no exploitation details are provided beyond the SSRF description. R...