Lucene search
K

4 matches found

Vulnrichment
Vulnrichment
added 2025/03/13 5:56 a.m.11 views

CVE-2024-8402 Improper Neutralization of Special Elements used in a Command ('Command Injection') in GitLab

An issue was discovered in GitLab EE affecting all versions starting from 17.2 before 17.7.7, all versions starting from 17.8 before 17.8.5, all versions starting from 17.9 before 17.9.2. An input validation issue in the Google Cloud IAM integration feature could have enabled a Maintainer to...

3.7CVSS5.2AI score0.00228EPSS
Exploits1References2
OSV
OSV
added 2025/03/13 5:56 a.m.10 views

CVE-2024-8402 Improper Neutralization of Special Elements used in a Command ('Command Injection') in GitLab

An issue was discovered in GitLab EE affecting all versions starting from 17.2 before 17.7.7, all versions starting from 17.8 before 17.8.5, all versions starting from 17.9 before 17.9.2. An input validation issue in the Google Cloud IAM integration feature could have enabled a Maintainer to...

3.7CVSS6.5AI score0.00228EPSS
Exploits1References5
Debian CVE
Debian CVE
added 2025/03/13 5:56 a.m.9 views

CVE-2024-8402

Removed by vendor...

7.4CVSS5.8AI score0.00228EPSS
Exploits1
CVE
CVE
added 2025/03/13 5:56 a.m.184 views

CVE-2024-8402

CVE-2024-8402 affects GitLab EE/CE, with input validation in the Google Cloud IAM integration allowing a Maintainer to inject malicious code in versions: 17.2–17.7.7, 17.8–17.8.5, and 17.9–17.9.2. Affected product: GitLab EE (and CE per sources) before the fixed releases. Root cause: input valida...

7.4CVSS3.8AI score0.00228EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder