Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 11:46 p.m.4 views

CVE-2022-4138

A Cross Site Request Forgery issue has been discovered in GitLab CE/EE affecting all versions before 15.6.7, all versions starting from 15.7 before 15.7.6, and all versions starting from 15.8 before 15.8.1. An attacker could take over a project if an Owner or Maintainer uploads a file to a...

8.1CVSS6.4AI score0.00445EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/01/03 12:0 a.m.49 views

GitLab < 15.6.7 (SECURITY-RELEASE-GITLAB-15-8-1-RELEASED)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - A lack of length validation in GitLab CE/EE affecting all versions from 12.4 before 15.6.7, 15.7 before 15.7.6, and 15.8 before 15.8.1 allows an authenticated attacker to create a large Issue...

8.1CVSS7AI score0.01247EPSS
Exploits0References5
CVE
CVE
added 2023/02/13 12:0 a.m.93 views

CVE-2022-4138

GitLab CVE-2022-4138 affects GitLab CE/EE with CSRF in all versions before 15.6.7, versions 15.7 before 15.7.6, and versions 15.8 before 15.8.1. An attacker could take over a project if an Owner or Maintainer uploads a malicious file to a project. Documents consistently identify the vulnerability...

8.1CVSS7.6AI score0.00445EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2023/02/13 12:0 a.m.29 views

CVE-2022-4138

A Cross Site Request Forgery issue has been discovered in GitLab CE/EE affecting all versions before 15.6.7, all versions starting from 15.7 before 15.7.6, and all versions starting from 15.8 before 15.8.1. An attacker could take over a project if an Owner or Maintainer uploads a file to a...

6.4CVSS8AI score0.00445EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2023/02/13 12:0 a.m.6 views

CVE-2022-4138

A Cross Site Request Forgery issue has been discovered in GitLab CE/EE affecting all versions before 15.6.7, all versions starting from 15.7 before 15.7.6, and all versions starting from 15.8 before 15.8.1. An attacker could take over a project if an Owner or Maintainer uploads a file to a...

6.4CVSS8.1AI score0.00445EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2023/02/02 12:0 a.m.38 views

GitLab 1.0 < 15.6.7 / 15.7 < 15.7.6 / 15.8 < 15.8.1 (CVE-2022-4138)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - A Cross Site Request Forgery issue has been discovered in GitLab CE/EE affecting all versions before 15.6.7, all versions starting from 15.7 before 15.7.6, and all versions starting from 15.8 before...

8.1CVSS7.6AI score0.00445EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2023/02/01 12:0 a.m.31 views

FreeBSD : Gitlab -- Multiple Vulnerabilities (ee890be3-a1ec-11ed-a81d-001b217b3468)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the ee890be3-a1ec-11ed-a81d-001b217b3468 advisory. - A lack of length validation in GitLab CE/EE affecting all versions from 12.4 before 15.6.7,...

8.1CVSS7AI score0.01247EPSS
Exploits0References6
Rows per page
Query Builder