Lucene search
K

4 matches found

UbuntuCve
UbuntuCve
added 2024/09/12 7:15 p.m.8 views

CVE-2024-4472

An issue was discovered in GitLab CE/EE affecting all versions starting from 16.5 prior to 17.1.7, starting from 17.2 prior to 17.2.5, and starting from 17.3 prior to 17.3.2, where dependency proxy credentials are retained in graphql Logs...

5.5CVSS5.9AI score0.00216EPSS
Exploits0References3
CVE
CVE
added 2024/09/12 6:26 p.m.210 views

CVE-2024-4472

CVE-2024-4472 affects GitLab CE/EE; vulnerable versions include all from 16.5 up to 17.1.7, 17.2 up to 17.2.5, and 17.3 up to 17.3.2, where dependency proxy credentials are retained in GraphQL logs. The issue’s root cause is credentials leakage in GraphQL log handling. Remediation is to apply the...

5.5CVSS4.8AI score0.00216EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2024/09/12 6:26 p.m.40 views

CVE-2024-4472 Insertion of Sensitive Information into Log File in GitLab

An issue was discovered in GitLab CE/EE affecting all versions starting from 16.5 prior to 17.1.7, starting from 17.2 prior to 17.2.5, and starting from 17.3 prior to 17.3.2, where dependency proxy credentials are retained in graphql Logs...

4CVSS0.00216EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/09/12 12:0 a.m.12 views

GitLab 16.5 < 17.1.7 / 17.2 < 17.2.5 / 17.3 < 17.3.2 (CVE-2024-4472)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description...

5.5CVSS5.5AI score0.00216EPSS
Exploits0References4
Rows per page
Query Builder