Lucene search
K

7 matches found

Tenable Nessus
Tenable Nessus
added 2023/12/07 12:0 a.m.30 views

GitLab 16.5 < 16.5.3 / 16.6 < 16.6.1 (CVE-2023-6396)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - Gitlab reports: XSS and ReDoS in Markdown via Banzai pipeline of Jira Members with admingroupmember custom permission can add members with higher role Release Description visible in public projects...

6.5CVSS6.5AI score0.00497EPSS
Exploits0References3
Circl
Circl
added 2023/08/02 12:39 p.m.6 views

CVE-2023-3401

creationtimestamp| type| source ---|---|--- 2023-08-02 12:39:06+00:00| seen| https://t.me/cibsecurity/67566...

6.5CVSS6.2AI score0.00497EPSS
Exploits0References1
OSV
OSV
added 2023/08/02 8:30 a.m.25 views

CVE-2023-3401 Improper Control of Generation of Code ('Code Injection') in GitLab

An issue has been discovered in GitLab affecting all versions before 16.0.8, all versions starting from 16.1 before 16.1.3, all versions starting from 16.2 before 16.2.2. The main branch of a repository with a specially designed name allows an attacker to create repositories with malicious code...

4.8CVSS6.3AI score0.00497EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2023/08/02 8:30 a.m.17 views

CVE-2023-3401 Improper Control of Generation of Code ('Code Injection') in GitLab

An issue has been discovered in GitLab affecting all versions before 16.0.8, all versions starting from 16.1 before 16.1.3, all versions starting from 16.2 before 16.2.2. The main branch of a repository with a specially designed name allows an attacker to create repositories with malicious code...

4.8CVSS6.4AI score0.00497EPSS
Exploits0References2
CVE
CVE
added 2023/08/02 8:30 a.m.370 views

CVE-2023-3401

GitLab CVE-2023-3401 affects GitLab CE/EE versions before 16.0.8, 16.1 before 16.1.3, and 16.2 before 16.2.2. The root cause is a specially named main-branch design that lets an attacker create repositories containing malicious code. Mitigations are available: updates fixing the issue include Git...

6.5CVSS5.5AI score0.00497EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2023/08/02 8:30 a.m.26 views

CVE-2023-3401 Improper Control of Generation of Code ('Code Injection') in GitLab

An issue has been discovered in GitLab affecting all versions before 16.0.8, all versions starting from 16.1 before 16.1.3, all versions starting from 16.2 before 16.2.2. The main branch of a repository with a specially designed name allows an attacker to create repositories with malicious code...

4.8CVSS6.6AI score0.00497EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/08/01 12:0 a.m.26 views

GitLab 0 < 16.0.8 / 16.1.0 < 16.1.3 / 16.2.0 < 16.2.2 (CVE-2023-3401)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An issue has been discovered in GitLab affecting all versions before 16.0.8, all versions starting from 16.1 before 16.1.3, all versions starting from 16.2 before 16.2.2. The main branch of a reposito...

6.5CVSS6.4AI score0.00497EPSS
Exploits0References4
Rows per page
Query Builder