Lucene search
K

9 matches found

NVD
NVD
added 2022/11/10 12:15 a.m.21 views

CVE-2022-3413

Incorrect authorization during display of Audit Events in GitLab EE affecting all versions from 14.5 prior to 15.3.5, 15.4 prior to 15.4.4, and 15.5 prior to 15.5.2, allowed Developers to view the project's Audit Events and Developers or Maintainers to view the group's Audit Events. These should...

4.3CVSS0.00458EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2022/11/10 12:15 a.m.30 views

CVE-2022-3413

Incorrect authorization during display of Audit Events in GitLab EE affecting all versions from 14.5 prior to 15.3.5, 15.4 prior to 15.4.4, and 15.5 prior to 15.5.2, allowed Developers to view the project's Audit Events and Developers or Maintainers to view the group's Audit Events. These should...

4.3CVSS5.8AI score0.00458EPSS
Exploits0References1
CVE
CVE
added 2022/11/09 12:0 a.m.105 views

CVE-2022-3413

GitLab EE vulnerability CVE-2022-3413: Incorrect authorization during Audit Events display allowed Developers to view project Audit Events and Developers/Maintainers to view group Audit Events. Affected versions: 14.5 < 15.3.5, 15.4 < 15.4.4, 15.5

4.3CVSS4.6AI score0.00458EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2022/11/09 12:0 a.m.29 views

CVE-2022-3413

Incorrect authorization during display of Audit Events in GitLab EE affecting all versions from 14.5 prior to 15.3.5, 15.4 prior to 15.4.4, and 15.5 prior to 15.5.2, allowed Developers to view the project's Audit Events and Developers or Maintainers to view the group's Audit Events. These should...

4.3CVSS4.4AI score0.00458EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2022/11/09 12:0 a.m.5 views

CVE-2022-3413

Incorrect authorization during display of Audit Events in GitLab EE affecting all versions from 14.5 prior to 15.3.5, 15.4 prior to 15.4.4, and 15.5 prior to 15.5.2, allowed Developers to view the project's Audit Events and Developers or Maintainers to view the group's Audit Events. These should...

4.3CVSS6.9AI score0.00458EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/11/09 12:0 a.m.27 views

CVE-2022-3413

Incorrect authorization during display of Audit Events in GitLab EE affecting all versions from 14.5 prior to 15.3.5, 15.4 prior to 15.4.4, and 15.5 prior to 15.5.2, allowed Developers to view the project's Audit Events and Developers or Maintainers to view the group's Audit Events. These should...

4.3CVSS5.1AI score0.00458EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2022/11/09 12:0 a.m.28 views

CVE-2022-3413

Removed by vendor...

4.3CVSS5.8AI score0.00458EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2022/11/08 12:0 a.m.40 views

GitLab 14.5 < 15.3.5 / 15.4 < 15.4.4 / 15.5 < 15.5.2 (CVE-2022-3413)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - Incorrect authorization during display of Audit Events in GitLab EE affecting all versions from 14.5 prior to 15.3.5, 15.4 prior to 15.4.4, and 15.5 prior to 15.5.2, allowed Developers to view the...

4.3CVSS5.2AI score0.00458EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2022/11/05 12:0 a.m.37 views

FreeBSD : Gitlab -- Multiple vulnerabilities (16f7ec68-5cce-11ed-9be7-454b1dd82c64)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 16f7ec68-5cce-11ed-9be7-454b1dd82c64 advisory. - Gitlab reports: DAST analyzer sends custom request headers with every request Stored-XSS wit...

9CVSS6.2AI score0.86326EPSS
Exploits2References15
Rows per page
Query Builder