CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

18 matches found

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2024-48333

Malicious code in bioql PyPI...

6.8CVSS6.3AI score0.00369EPSS

Exploits0References3

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-14174

Malicious code in bioql PyPI...

6.8CVSS6.3AI score0.00058EPSS

Exploits1References2

Tenable Nessus•added 2025/08/30 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2025-0549

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue has been discovered in GitLab CE/EE affecting all versions starting from 17.3 prior to 17.9.8, from 17.10 prior to 17.10.6, and from 17.11 prior to...

6.8CVSS5.5AI score0.00058EPSS

Exploits1References2

RedhatCVE•added 2025/05/23 6:33 a.m.•10 views

CVE-2024-7404

An issue was discovered in GitLab CE/EE affecting all versions starting from 17.2 prior to 17.3.7, starting from 17.4 prior to 17.4.4 and starting from 17.5 prior to 17.5.2, which could have allowed an attacker gaining full API access as the victim via the Device OAuth flow...

6.8CVSS6.3AI score0.00369EPSS

Exploits0References1

OSV•added 2025/05/13 6:11 a.m.•8 views

BIT-GITLAB-2025-0549 Authentication Bypass Using an Alternate Path or Channel in GitLab

An issue has been discovered in GitLab CE/EE affecting all versions starting from 17.3 prior to 17.9.8, from 17.10 prior to 17.10.6, and from 17.11 prior to 17.11.2. A security vulnerability allows attackers to bypass Device OAuth flow protections, enabling authorization form submission through...

6.8CVSS6.1AI score0.00058EPSS

Exploits1References3

NVD•added 2025/05/09 5:15 p.m.•13 views

CVE-2025-0549

6.8CVSS0.00058EPSS

Exploits1References2

OSV•added 2025/05/09 5:15 p.m.•0 views

UBUNTU-CVE-2025-0549

6.8CVSS5.7AI score0.00058EPSS

Exploits1References2

Cvelist•added 2025/05/09 4:13 p.m.•17 views

CVE-2025-0549 Authentication Bypass Using an Alternate Path or Channel in GitLab

6.8CVSS0.00058EPSS

Exploits1References2

CVE•added 2025/05/09 4:13 p.m.•96 views

CVE-2025-0549

CVE-2025-0549 affects GitLab CE/EE: all versions from 17.3 up to 17.9.8, 17.10 up to 17.10.6, and 17.11 up to 17.11.2, are vulnerable. The issue allows attackers to bypass Device OAuth flow protections and submit authorization forms with minimal user interaction. The available documents do not sp...

6.8CVSS6.4AI score0.00058EPSS

Exploits1References2Affected Software1

Vulnrichment•added 2025/05/09 4:13 p.m.•9 views

CVE-2025-0549 Authentication Bypass Using an Alternate Path or Channel in GitLab

6.8CVSS6.4AI score0.00058EPSS

Exploits1References2

OSV•added 2025/05/09 4:13 p.m.•2 views

CVE-2025-0549 Authentication Bypass Using an Alternate Path or Channel in GitLab

6.8CVSS6.4AI score0.00058EPSS

Exploits1References5

FreeBSD•added 2025/05/07 12:0 a.m.•24 views

Gitlab -- vulnerabilities

Gitlab reports: Partial Bypass for Device OAuth flow using Cross Window Forgery Denial of service by abusing Github import API Group IP restriction bypass allows disclosing issue title of restricted project...

6.8CVSS7AI score0.00058EPSS

Exploits1References1

Tenable Nessus•added 2024/11/15 12:0 a.m.•12 views

GitLab 17.2 < 17.3.7 / 17.4 < 17.4.4 / 17.5 < 17.5.2 (CVE-2024-7404)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An issue was discovered in GitLab CE/EE affecting all versions starting from 17.2 prior to 17.3.7, starting from 17.4 prior to 17.4.4 and starting from 17.5 prior to 17.5.2, which could have allowed a...

6.8CVSS5.7AI score0.00369EPSS

Exploits0References5

NVD•added 2024/11/14 1:15 p.m.•17 views

CVE-2024-7404

6.8CVSS0.00369EPSS

Exploits0References3

Vulnrichment•added 2024/11/14 1:2 p.m.•16 views

CVE-2024-7404 Improper Restriction of Rendered UI Layers or Frames in GitLab

6.8CVSS6.5AI score0.00369EPSS

Exploits0References3

OSV•added 2024/11/14 1:2 p.m.•10 views

CVE-2024-7404 Improper Restriction of Rendered UI Layers or Frames in GitLab