4 matches found
CVE-2022-2882
An issue has been discovered in GitLab CE/EE affecting all versions starting from 12.6 before 15.2.5, all versions starting from 15.3 before 15.3.4, all versions starting from 15.4 before 15.4.1. A malicious maintainer could exfiltrate a GitHub integration's access token by modifying the...
CVE-2022-2882
An issue has been discovered in GitLab CE/EE affecting all versions starting from 12.6 before 15.2.5, all versions starting from 15.3 before 15.3.4, all versions starting from 15.4 before 15.4.1. A malicious maintainer could exfiltrate a GitHub integration's access token by modifying the...
CVE-2022-2882
CVE-2022-2882 affects GitLab CE/EE: all versions from 12.6 up to but not including 15.2.5, all 15.3 versions before 15.3.4, and all 15.4 versions before 15.4.1 are impacted. The issue allows a malicious maintainer to exfiltrate a GitHub integration’s access token by modifying an integration URL s...
FreeBSD : Gitlab -- Multiple vulnerabilities (04422df1-40d8-11ed-9be7-454b1dd82c64)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 04422df1-40d8-11ed-9be7-454b1dd82c64 advisory. - Gitlab reports: Denial of Service via cloning an issue Arbitrary PUT request as victim user...