Lucene search
K

9 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 11:3 p.m.7 views

CVE-2022-3411

A lack of length validation in GitLab CE/EE affecting all versions from 12.4 before 15.6.7, 15.7 before 15.7.6, and 15.8 before 15.8.1 allows an authenticated attacker to create a large Issue description via GraphQL which, when repeatedly requested, saturates CPU usage...

6.5CVSS6.2AI score0.01247EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/01/03 12:0 a.m.49 views

GitLab < 15.6.7 (SECURITY-RELEASE-GITLAB-15-8-1-RELEASED)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - A lack of length validation in GitLab CE/EE affecting all versions from 12.4 before 15.6.7, 15.7 before 15.7.6, and 15.8 before 15.8.1 allows an authenticated attacker to create a large Issue...

8.1CVSS7AI score0.01247EPSS
Exploits0References5
NVD
NVD
added 2023/02/22 11:15 p.m.18 views

CVE-2023-0886

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2022-3411. Reason: This candidate is a reservation duplicate of CVE-2022-3411. Notes: All CVE users should reference CVE-2022-3411 instead of this candidate. All references and descriptions in this candidate have been removed to...

6.4AI score
Exploits0
UbuntuCve
UbuntuCve
added 2023/02/13 11:15 p.m.25 views

CVE-2022-3411

A lack of length validation in GitLab CE/EE affecting all versions from 12.4 before 15.6.7, 15.7 before 15.7.6, and 15.8 before 15.8.1 allows an authenticated attacker to create a large Issue description via GraphQL which, when repeatedly requested, saturates CPU usage...

6.5CVSS6.6AI score0.01247EPSS
Exploits0References4
CVE
CVE
added 2023/02/13 12:0 a.m.111 views

CVE-2022-3411

CVE-2022-3411 affects GitLab CE/EE with a lack of length validation in GraphQL that allows an authenticated user to create an oversized Issue description, repeatedly requested to saturate CPU (DoS). Affected versions: GitLab 12.4–15.6.7, 15.7–15.7.6, and 15.8–15.8.1. Mitigation: upgrade to fixed ...

6.5CVSS6.1AI score0.01247EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2023/02/13 12:0 a.m.25 views

CVE-2022-3411

A lack of length validation in GitLab CE/EE affecting all versions from 12.4 before 15.6.7, 15.7 before 15.7.6, and 15.8 before 15.8.1 allows an authenticated attacker to create a large Issue description via GraphQL which, when repeatedly requested, saturates CPU usage...

6.5CVSS6.3AI score0.01247EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2023/02/02 12:0 a.m.46 views

GitLab 12.4 < 15.6.7 / 15.7 < 15.7.6 / 15.8 < 15.8.1 (CVE-2022-3411)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - A lack of length validation in GitLab CE/EE affecting all versions from 12.4 before 15.6.7, 15.7 before 15.7.6, and 15.8 before 15.8.1 allows an authenticated attacker to create a large Issue...

6.5CVSS6.5AI score0.01247EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2023/02/01 12:0 a.m.31 views

FreeBSD : Gitlab -- Multiple Vulnerabilities (ee890be3-a1ec-11ed-a81d-001b217b3468)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the ee890be3-a1ec-11ed-a81d-001b217b3468 advisory. - A lack of length validation in GitLab CE/EE affecting all versions from 12.4 before 15.6.7,...

8.1CVSS7AI score0.01247EPSS
Exploits0References6
CVE
CVE
added 1976/01/01 12:0 a.m.55 views

CVE-2023-0886

CVE-2023-0886 is rejected; this candidate is a reservation duplicate of CVE-2022-3411.

6.3AI score
Exploits0
Rows per page
Query Builder