Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 10:17 p.m.6 views

CVE-2022-1406

Improper input validation in GitLab CE/EE affecting all versions from 8.12 prior to 14.8.6, all versions from 14.9.0 prior to 14.9.4, and 14.10.0 allows a Developer to read protected Group or Project CI/CD variables by importing a malicious project...

6.5CVSS6.3AI score0.01108EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2022/06/14 12:0 a.m.20 views

GitLab 8.12.0 < 14.8.6, 14.9.x < 14.9.4, 14.10.x < 14.10.1 Input Validation Vulnerability

GitLab is prone to an input validation vulnerability. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:gitlab:gitlab"; if...

6.5CVSS6.9AI score0.01108EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2022/05/18 12:0 a.m.33 views

GitLab 8.12.0 < 14.8.6 / 14.9.0 < 14.9.4 / 14.10.0 < 14.10.1 (CVE-2022-1406)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - Improper input validation in GitLab CE/EE affecting all versions from 8.12 prior to 14.8.6, all versions from 14.9.0 prior to 14.9.4, and 14.10.0 allows a Developer to read protected Group or Project...

6.5CVSS6.9AI score0.01108EPSS
Exploits0References4
CVE
CVE
added 2022/05/11 2:42 p.m.107 views

CVE-2022-1406

GitLab CVE-2022-1406 is an improper input validation vulnerability in GitLab CE/EE. The flaw allows a Developer to read protected Group or Project CI/CD variables by importing a malicious project. Affected versions are GitLab CE/EE 8.12 up to but not including 14.8.6; GitLab 14.9.0 up to but not ...

6.5CVSS6.2AI score0.01108EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder