Lucene search
K

8 matches found

Tenable Nessus
Tenable Nessus
added 2024/01/03 12:0 a.m.49 views

GitLab < 15.6.7 (SECURITY-RELEASE-GITLAB-15-8-1-RELEASED)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - A lack of length validation in GitLab CE/EE affecting all versions from 12.4 before 15.6.7, 15.7 before 15.7.6, and 15.8 before 15.8.1 allows an authenticated attacker to create a large Issue...

8.1CVSS7AI score0.01247EPSS
Exploits0References5
NVD
NVD
added 2023/02/22 11:15 p.m.19 views

CVE-2023-0884

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2022-3759. Reason: This candidate is a reservation duplicate of CVE-2022-3759. Notes: All CVE users should reference CVE-2022-3759 instead of this candidate. All references and descriptions in this candidate have been removed to...

5.8AI score
Exploits0
NVD
NVD
added 2023/02/13 11:15 p.m.18 views

CVE-2022-3759

An issue has been discovered in GitLab CE/EE affecting all versions starting from 14.3 before 15.6.7, all versions starting from 15.7 before 15.7.6, all versions starting from 15.8 before 15.8.1. An attacker may upload a crafted CI job artifact zip file in a project that uses dynamic child...

7.5CVSS5.5AI score0.01216EPSS
Exploits0References3
Cvelist
Cvelist
added 2023/02/13 12:0 a.m.35 views

CVE-2022-3759

An issue has been discovered in GitLab CE/EE affecting all versions starting from 14.3 before 15.6.7, all versions starting from 15.7 before 15.7.6, all versions starting from 15.8 before 15.8.1. An attacker may upload a crafted CI job artifact zip file in a project that uses dynamic child...

4.3CVSS7.5AI score0.01216EPSS
Exploits0References3
CVE
CVE
added 2023/02/13 12:0 a.m.97 views

CVE-2022-3759

CVE-2022-3759 affects GitLab CE/EE and can cause a DoS by uploading a crafted CI job artifact ZIP in projects using dynamic child pipelines, triggering a memory-intensive Sidekiq job. Impacted ranges: GitLab 14.3–14.3.x before 15.6.7; 15.7.x before 15.7.6; 15.8.x before 15.8.1. In vulnerable envi...

7.5CVSS7.2AI score0.01216EPSS
Exploits0References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2023/02/02 12:0 a.m.24 views

GitLab 14.3 < 15.6.7 / 15.7 < 15.7.6 / 15.8 < 15.8.1 (CVE-2022-3759)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An issue has been discovered in GitLab CE/EE affecting all versions starting from 14.3 before 15.6.7, all versions starting from 15.7 before 15.7.6, all versions starting from 15.8 before 15.8.1. An...

7.5CVSS7.2AI score0.01216EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2023/02/01 12:0 a.m.31 views

FreeBSD : Gitlab -- Multiple Vulnerabilities (ee890be3-a1ec-11ed-a81d-001b217b3468)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the ee890be3-a1ec-11ed-a81d-001b217b3468 advisory. - A lack of length validation in GitLab CE/EE affecting all versions from 12.4 before 15.6.7,...

8.1CVSS7AI score0.01247EPSS
Exploits0References6
CVE
CVE
added 1976/01/01 12:0 a.m.53 views

CVE-2023-0884

CVE-2023-0884 is a reservation duplicate of CVE-2022-3759 and is not an active vulnerability entry; use CVE-2022-3759 for details. Technical details: GitLab CE/EE versions affected are 14.3–15.6.7, 15.7–15.7.6, and 15.8–15.8.1, where an attacker could achieve Denial of Service by uploading crafte...

7.4AI score
Exploits0
Rows per page
Query Builder