3 matches found
CVE-2022-4201
GitLab CE/EE contains a blind SSRF (CVE-2022-4201) affecting 11.3–11.?. versions prior to 15.4.6, 15.4.x prior to 15.5.5, and 15.6.x prior to 15.6.1. The issue allows an attacker to connect to local addresses when configuring a malicious GitLab Runner. Root cause/impact are stated as blind SSRF w...
GitLab 11.3 < 15.4.6 / 15.5 < 15.5.5 / 15.6 < 15.6.1 (CVE-2022-4201)
The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - A blind SSRF in GitLab CE/EE affecting all from 11.3 prior to 15.4.6, 15.5 prior to 15.5.5, and 15.6 prior to 15.6.1 allows an attacker to connect to local addresses when configuring a malicious GitLa...
FreeBSD : Gitlab -- Multiple Vulnerabilities (3cde510a-7135-11ed-a28b-bff032704f00)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 3cde510a-7135-11ed-a28b-bff032704f00 advisory. - Gitlab reports: DAST API scanner exposes Authorization headers in vulnerabilities Group IP...