Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 10:12 p.m.10 views

CVE-2022-1935

Incorrect authorization in GitLab EE affecting all versions from 12.0 before 14.9.5, all versions starting from 14.10 before 14.10.4, all versions starting from 15.0 before 15.0.1 allowed an attacker already in possession of a valid Project Trigger Token to misuse it from any location even when I...

6.5CVSS6.4AI score0.0065EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2022/06/28 12:0 a.m.36 views

GitLab 12.0.0 < 14.9.5 / 14.10.0 < 14.10.4 / 15.0.0 < 15.0.1 (CVE-2022-1935)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - Incorrect authorization in GitLab EE affecting all versions from 12.0 before 14.9.5, all versions starting from 14.10 before 14.10.4, all versions starting from 15.0 before 15.0.1 allowed an attacker...

6.5CVSS6.5AI score0.0065EPSS
Exploits0References3
NVD
NVD
added 2022/06/06 5:15 p.m.13 views

CVE-2022-1935

Incorrect authorization in GitLab EE affecting all versions from 12.0 before 14.9.5, all versions starting from 14.10 before 14.10.4, all versions starting from 15.0 before 15.0.1 allowed an attacker already in possession of a valid Project Trigger Token to misuse it from any location even when I...

6.5CVSS0.0065EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2022/06/06 5:15 p.m.40 views

CVE-2022-1935

Incorrect authorization in GitLab EE affecting all versions from 12.0 before 14.9.5, all versions starting from 14.10 before 14.10.4, all versions starting from 15.0 before 15.0.1 allowed an attacker already in possession of a valid Project Trigger Token to misuse it from any location even when I...

6.5CVSS6.6AI score0.0065EPSS
Exploits0References2
CVE
CVE
added 2022/06/06 4:50 p.m.140 views

CVE-2022-1935

CVE-2022-1935 is an incorrect authorization vulnerability in GitLab EE where an attacker with a valid Project Trigger Token can misuse it from any location, bypassing IP restrictions. Affected releases include: 12.0–14.9.4; 14.10.0–14.10.3; 15.0.0. Remediation (per sources) is to upgrade to: 14.9...

6.5CVSS6.2AI score0.0065EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/06/06 4:50 p.m.32 views

CVE-2022-1935

Incorrect authorization in GitLab EE affecting all versions from 12.0 before 14.9.5, all versions starting from 14.10 before 14.10.4, all versions starting from 15.0 before 15.0.1 allowed an attacker already in possession of a valid Project Trigger Token to misuse it from any location even when I...

6.5CVSS6.6AI score0.0065EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2022/06/06 4:50 p.m.32 views

CVE-2022-1935

Removed by vendor...

6.5CVSS6.6AI score0.0065EPSS
Exploits0
Rows per page
Query Builder