Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 11:17 p.m.6 views

CVE-2022-3793

An improper authorization issue in GitLab CE/EE affecting all versions from 14.4 prior to 15.3.5, 15.4 prior to 15.4.4, and 15.5 prior to 15.5.2 allows an attacker to read variables set directly in a GitLab CI/CD configuration file they don't have access to...

5.3CVSS6.3AI score0.00537EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2022/11/11 12:0 a.m.22 views

GitLab 12.6 < 15.3.5, 15.4 < 15.4.4, 15.5 < 15.5.2 Multiple Vulnerabilities

GitLab is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:gitlab:gitlab"; if description...

9CVSS7.4AI score0.00774EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2022/11/10 12:15 a.m.38 views

CVE-2022-3793

An improper authorization issue in GitLab CE/EE affecting all versions from 14.4 prior to 15.3.5, 15.4 prior to 15.4.4, and 15.5 prior to 15.5.2 allows an attacker to read variables set directly in a GitLab CI/CD configuration file they don't have access to...

5.3CVSS6.1AI score0.00537EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2022/11/10 12:0 a.m.40 views

GitLab 12.6 < 15.3.5 / 15.4 < 15.4.4 / 15.5 < 15.5.2 (CVE-2022-3793)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An improper authorization issue in GitLab CE/EE affecting all versions from 14.4 prior to 15.3.5, 15.4 prior to 15.4.4, and 15.5 prior to 15.5.2 allows an attacker to read variables set directly in a...

5.3CVSS5.8AI score0.00537EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2022/11/09 12:0 a.m.6 views

CVE-2022-3793

An improper authorization issue in GitLab CE/EE affecting all versions from 14.4 prior to 15.3.5, 15.4 prior to 15.4.4, and 15.5 prior to 15.5.2 allows an attacker to read variables set directly in a GitLab CI/CD configuration file they don't have access to...

4.3CVSS6.3AI score0.00537EPSS
Exploits0References2
CVE
CVE
added 2022/11/09 12:0 a.m.105 views

CVE-2022-3793

GitLab CE/EE vulnerability CVE-2022-3793: improper authorization allows reading variables set in a GitLab CI/CD config file by an attacker without access. Affected: all 14.4 up to before 15.3.5; 15.4 up to before 15.4.4; 15.5 up to before 15.5.2. Root cause: insufficient access control around CI/...

5.3CVSS5.1AI score0.00537EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2022/11/05 12:0 a.m.37 views

FreeBSD : Gitlab -- Multiple vulnerabilities (16f7ec68-5cce-11ed-9be7-454b1dd82c64)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 16f7ec68-5cce-11ed-9be7-454b1dd82c64 advisory. - Gitlab reports: DAST analyzer sends custom request headers with every request Stored-XSS wit...

9CVSS6.2AI score0.86326EPSS
Exploits2References15
Rows per page
Query Builder