Lucene search
+L

7 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 3:31 a.m.9 views

CVE-2023-3964

An issue has been discovered in GitLab affecting all versions starting from 13.2 before 16.4.3, all versions starting from 16.5 before 16.5.3, all versions starting from 16.6 before 16.6.1. It was possible for users to access composer packages on public projects that have package registry disable...

4.3CVSS6.5AI score0.00456EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2023/12/07 12:0 a.m.29 views

GitLab 13.2 < 16.4.3 / 16.5 < 16.5.3 / 16.6 < 16.6.1 (CVE-2023-3964)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An issue has been discovered in GitLab affecting all versions starting from 13.2 before 16.4.3, all versions starting from 16.5 before 16.5.3, all versions starting from 16.6 before 16.6.1. It was...

4.3CVSS5.1AI score0.00456EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2023/12/01 7:2 a.m.5 views

CVE-2023-3964 Incorrect Authorization in GitLab

An issue has been discovered in GitLab affecting all versions starting from 13.2 before 16.4.3, all versions starting from 16.5 before 16.5.3, all versions starting from 16.6 before 16.6.1. It was possible for users to access composer packages on public projects that have package registry disable...

4.3CVSS6.4AI score0.00456EPSS
Exploits0References2
CVE
CVE
added 2023/12/01 7:2 a.m.74 views

CVE-2023-3964

CVE-2023-3964 affects GitLab versions 13.2–16.4.3, 16.5–16.5.3, and 16.6–16.6.1, allowing users to access composer packages in public projects with the package registry disabled in project settings. The vulnerability's impact is limited to access/reading; no other data manipulation indicated. Mit...

4.3CVSS4.6AI score0.00456EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2023/12/01 7:2 a.m.32 views

CVE-2023-3964 Incorrect Authorization in GitLab

An issue has been discovered in GitLab affecting all versions starting from 13.2 before 16.4.3, all versions starting from 16.5 before 16.5.3, all versions starting from 16.6 before 16.6.1. It was possible for users to access composer packages on public projects that have package registry disable...

4.3CVSS5AI score0.00456EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2023/12/01 7:2 a.m.43 views

CVE-2023-3964

Removed by vendor...

4.3CVSS5.8AI score0.00456EPSS
Exploits0
OSV
OSV
added 2023/12/01 7:2 a.m.30 views

CVE-2023-3964 Incorrect Authorization in GitLab

An issue has been discovered in GitLab affecting all versions starting from 13.2 before 16.4.3, all versions starting from 16.5 before 16.5.3, all versions starting from 16.6 before 16.6.1. It was possible for users to access composer packages on public projects that have package registry disable...

4.3CVSS4.6AI score0.00456EPSS
Exploits0References5
Rows per page
Query Builder