6 matches found
CVE-2024-8647 vulnerabilities
Vulnerabilities for packages: gitlab-cng-fips...
CVE-2024-8647
CVE-2024-8647 affects GitLab self-hosted installations, from versions 15.2 through 17.4.6, with 17.5 before 17.5.4 and 17.6 before 17.6.2. The issue enables leaking the anti-CSRF token to an external site when Harbor integration is enabled, indicating a cross-origin exposure vulnerability present...
CVE-2024-8647 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in GitLab
An issue was discovered in GitLab affecting all versions starting 15.2 to 17.4.6, 17.5 prior to 17.5.4, and 17.6 prior to 17.6.2. On self hosted installs, it was possible to leak the anti-CSRF-token to an external site while the Harbor integration was enabled...
CVE-2024-8647
Removed by vendor...
GitLab 15.2 < 17.4.6 / 17.5 < 17.5.4 / 17.6 < 17.6.2 (CVE-2024-8647)
The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' in GitLab CVE-2024-8647 Note that Nessus has not tested for this issue but has instead relied only on the application's...
CVE-2024-8647
creationtimestamp| type| source ---|---|--- 2024-12-11 16:30:39+00:00| seen| https://infosec.exchange/users/screaminggoat/statuses/113635140492482846 2024-12-12 13:49:55+00:00| seen| https://t.me/cvedetector/12763...