Lucene search
K

5 matches found

Tenable Nessus
Tenable Nessus
added 2023/11/13 12:0 a.m.22 views

GitLab 11.6 < 16.3.6 / 16.4 < 16.4.2 / 16.5 < 16.5.1 (CVE-2023-3399)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An issue has been discovered in GitLab EE affecting all versions starting from 11.6 before 16.3.6, all versions starting from 16.4 before 16.4.2, all versions starting from 16.5 before 16.5.1. It was...

8.5CVSS7.5AI score0.00452EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2023/11/06 1:15 p.m.13 views

CVE-2023-3399

An issue has been discovered in GitLab EE affecting all versions starting from 11.6 before 16.3.6, all versions starting from 16.4 before 16.4.2, all versions starting from 16.5 before 16.5.1. It was possible for an unauthorised project or group member to read the CI/CD variables using the custom...

8.5CVSS7AI score0.00452EPSS
Exploits0References1
CVE
CVE
added 2023/11/06 12:8 p.m.339 views

CVE-2023-3399

The CVE-2023-3399 entry affects GitLab EE: unauthenticated access to CI/CD variables read via custom project templates by unauthorized project/group members. Affected versions are GitLab EE 11.6 up to 16.3.6, 16.4 up to 16.4.2, and 16.5 up to 16.5.1. The provided sources describe the issue and it...

8.5CVSS7.6AI score0.00452EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/11/06 12:8 p.m.16 views

CVE-2023-3399 Insertion of Sensitive Information Into Sent Data in GitLab

An issue has been discovered in GitLab EE affecting all versions starting from 11.6 before 16.3.6, all versions starting from 16.4 before 16.4.2, all versions starting from 16.5 before 16.5.1. It was possible for an unauthorised project or group member to read the CI/CD variables using the custom...

8.5CVSS7.7AI score0.00452EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/11/06 12:8 p.m.32 views

CVE-2023-3399 Insertion of Sensitive Information Into Sent Data in GitLab

An issue has been discovered in GitLab EE affecting all versions starting from 11.6 before 16.3.6, all versions starting from 16.4 before 16.4.2, all versions starting from 16.5 before 16.5.1. It was possible for an unauthorised project or group member to read the CI/CD variables using the custom...

8.5CVSS8.3AI score0.00452EPSS
Exploits0References2
Rows per page
Query Builder