Lucene search
K

5 matches found

OpenVAS
OpenVAS
added 2022/08/08 12:0 a.m.16 views

GitLab 12.10.x - 15.0.4, 15.1.x - 15.1.3, 15.2 Improper Input Validation Vulnerability

GitLab is prone to an improper input validation vulnerability. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:gitlab:gitlab"; if...

6.2CVSS5.7AI score0.00635EPSS
Exploits0References2
CVE
CVE
added 2022/08/05 3:10 p.m.101 views

CVE-2022-2417

GitLab CVE-2022-2417 affects GitLab CE/EE; root cause is insufficient validation during project import, enabling an authenticated user to import a project with branch names that are 40 hexadecimal characters, which could enable supply-chain attacks by pinning to a specific commit. Affected versio...

6.2CVSS4.5AI score0.00635EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/08/05 3:10 p.m.33 views

CVE-2022-2417

Insufficient validation in GitLab CE/EE affecting all versions from 12.10 prior to 15.0.5, 15.1 prior to 15.1.4, and 15.2 prior to 15.2.1 allows an authenticated and authorised user to import a project that includes branch names which are 40 hexadecimal characters, which could be abused in supply...

6.2CVSS6.3AI score0.00635EPSS
Exploits0References2
OSV
OSV
added 2022/08/05 3:10 p.m.20 views

CVE-2022-2417

Insufficient validation in GitLab CE/EE affecting all versions from 12.10 prior to 15.0.5, 15.1 prior to 15.1.4, and 15.2 prior to 15.2.1 allows an authenticated and authorised user to import a project that includes branch names which are 40 hexadecimal characters, which could be abused in supply...

6.2CVSS4.2AI score0.00635EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2022/08/04 12:0 a.m.40 views

GitLab 12.10 < 15.0.5 / 15.1 < 15.1.4 / 15.2 < 15.2.1 (CVE-2022-2417)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - Insufficient validation in GitLab CE/EE affecting all versions from 12.10 prior to 15.0.5, 15.1 prior to 15.1.4, and 15.2 prior to 15.2.1 allows an authenticated and authorised user to import a projec...

6.2CVSS5.6AI score0.00635EPSS
Exploits0References3
Rows per page
Query Builder