Lucene search
+L

4 matches found

CVE
CVE
added 2023/12/15 4:3 p.m.79 views

CVE-2023-5061

CVE-2023-5061 affects GitLab core CI/CD handling: in certain situations, developers could override predefined CI variables via the REST API across multiple release lines (9.3–16.4.3, 16.5.0–16.5.3, 16.6.0–16.6.1). The root cause is not explicitly detailed beyond this behavior, but the impact is t...

4.3CVSS4.8AI score0.00416EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2023/12/15 4:3 p.m.36 views

CVE-2023-5061 Missing Authorization in GitLab

An issue has been discovered in GitLab affecting all versions starting from 9.3 before 16.4.4, all versions starting from 16.5 before 16.5.4, all versions starting from 16.6 before 16.6.2. In certain situations, it may have been possible for developers to override predefined CI variables via the...

4.3CVSS5.2AI score0.00416EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/12/14 12:0 a.m.31 views

GitLab 9.3 < 16.4.4 / 16.5 < 16.5.4 / 16.6 < 16.6.2 (CVE-2023-5061)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An issue has been discovered in GitLab affecting all versions starting from 9.3 before 16.4.4, all versions starting from 16.5 before 16.5.4, all versions starting from 16.6 before 16.6.2. In certain...

4.3CVSS5.2AI score0.00416EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2023/12/14 12:0 a.m.47 views

FreeBSD : Gitlab -- vulnerabilities (e2fb85ce-9a3c-11ee-af26-001b217b3468)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the e2fb85ce-9a3c-11ee-af26-001b217b3468 advisory. - Gitlab reports: Smartcard authentication allows impersonation of arbitrary user using user's...

8.8CVSS6.6AI score0.00733EPSS
Exploits0References10
Rows per page
Query Builder