Lucene search
K

7 matches found

Circl
Circl
added 2025/04/10 1:43 p.m.16 views

CVE-2025-2408

creationtimestamp| type| source ---|---|--- 2025-04-10 13:43:26+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114313960192880711 2025-04-10 13:44:04+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114313962647315508 2025-04-10 15:32:56+00:00| seen|...

5.3CVSS4.8AI score0.00301EPSS
Exploits1References5
NVD
NVD
added 2025/04/10 1:15 p.m.15 views

CVE-2025-2408

An issue has been discovered in GitLab CE/EE affecting all versions from 13.12 before 17.8.7, 17.9 before 17.9.6, and 17.10 before 17.10.4. Under certain conditions users could bypass IP access restrictions and view sensitive information...

5.3CVSS0.00301EPSS
Exploits1References2
Debian CVE
Debian CVE
added 2025/04/10 12:30 p.m.6 views

CVE-2025-2408

Removed by vendor...

5.3CVSS5.8AI score0.00301EPSS
Exploits1
CVE
CVE
added 2025/04/10 12:30 p.m.218 views

CVE-2025-2408

GitLab CE/EE is affected by CVE-2025-2408 in versions 13.12 before 17.8.7, 17.9 before 17.9.6, and 17.10 before 17.10.4. Under certain conditions, users could bypass IP access restrictions and view sensitive information (information disclosure). Remediation: upgrade to GitLab 17.8.7, 17.9.6, or 1...

5.3CVSS5.1AI score0.00301EPSS
Exploits1References2Affected Software1
OSV
OSV
added 2025/04/10 12:30 p.m.8 views

CVE-2025-2408 Insufficient Granularity of Access Control in GitLab

An issue has been discovered in GitLab CE/EE affecting all versions from 13.12 before 17.8.7, 17.9 before 17.9.6, and 17.10 before 17.10.4. Under certain conditions users could bypass IP access restrictions and view sensitive information...

5.3CVSS6.4AI score0.00301EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/04/10 12:30 p.m.9 views

CVE-2025-2408 Insufficient Granularity of Access Control in GitLab

An issue has been discovered in GitLab CE/EE affecting all versions from 13.12 before 17.8.7, 17.9 before 17.9.6, and 17.10 before 17.10.4. Under certain conditions users could bypass IP access restrictions and view sensitive information...

5.3CVSS5.1AI score0.00301EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/04/10 12:0 a.m.19 views

GitLab 13.12 < 17.8.7 / 17.9 < 17.9.6 / 17.10 < 17.10.4 (CVE-2025-2408)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An issue has been discovered in GitLab CE/EE affecting all versions from 13.12 before 17.8.7, 17.9 before 17.9.6, and 17.10 before 17.10.4. Under certain conditions users could bypass IP access...

5.3CVSS5.5AI score0.00301EPSS
Exploits1References4
Rows per page
Query Builder