Lucene search
K

217 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2021-9391

Malicious code in bioql PyPI...

4CVSS3.7AI score0.01366EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2024-46495

Malicious code in bioql PyPI...

4.9CVSS5.3AI score0.0042EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-54243

Malicious code in bioql PyPI...

8.1CVSS7.4AI score0.00502EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-34545

Malicious code in bioql PyPI...

5.3CVSS5.4AI score0.00791EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2025-22481

Malicious code in bioql PyPI...

5.3CVSS6.3AI score0.00392EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/07/26 6:31 a.m.11 views

CVE-2025-4976

An issue has been discovered in GitLab EE affecting all versions from 17.0 before 18.0.5, 18.1 before 18.1.3, and 18.2 before 18.2.1 that, under certain circumstances, could have allowed an attacker to access internal notes in GitLab Duo responses...

5.3CVSS6AI score0.00392EPSS
Exploits0References1
NVD
NVD
added 2025/07/24 7:15 a.m.5 views

CVE-2025-1299

An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.4 before 18.0.5, all versions starting from 18.1 before 18.1.3, all versions starting from 18.2 before 18.2.1 that, under circumstances, could have allowed an unauthorized user to read deployment job logs by...

4.3CVSS0.00298EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2025/07/24 7:15 a.m.3 views

CVE-2025-1299

An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.4 before 18.0.5, all versions starting from 18.1 before 18.1.3, all versions starting from 18.2 before 18.2.1 that, under circumstances, could have allowed an unauthorized user to read deployment job logs by...

4.3CVSS5.8AI score0.00298EPSS
Exploits0References3
CVE
CVE
added 2025/07/24 6:33 a.m.30 views

CVE-2025-0765

GitLab CE/EE CVE-2025-0765 is an Incorrect Authorization vulnerability affecting all versions from 17.9 before 18.0.5, 18.1 before 18.1.3, and 18.2 before 18.2.1, potentially allowing an unauthorized user to access custom service desk email addresses. The root cause is an authorization issue that...

4.3CVSS5.9AI score0.0038EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2025/07/10 9:15 a.m.15 views

CVE-2025-6948

An issue has been discovered in GitLab CE/EE affecting all versions from 17.11 before 17.11.6, 18.0 before 18.0.4, and 18.1 before 18.1.2 that, under certain conditions, could have allowed a successful attacker to execute actions on behalf of users by injecting malicious content...

8.7CVSS0.00492EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/07/10 8:31 a.m.26 views

CVE-2025-3396 Incorrect Authorization in GitLab

An issue has been discovered in GitLab EE affecting all versions from 13.3 before 17.11.6, 18.0 before 18.0.4, and 18.1 before 18.1.2 that could have allowed authenticated project owners to bypass group-level forking restrictions by manipulating API requests...

4.3CVSS0.00295EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2025/07/10 8:30 a.m.5 views

CVE-2025-4972

Removed by vendor...

2.7CVSS5.8AI score0.00316EPSS
Exploits0
OSV
OSV
added 2025/06/30 3:16 p.m.7 views

BIT-GITLAB-2025-1754 Missing Authentication for Critical Function in GitLab

An issue has been discovered in GitLab CE/EE affecting all versions from 17.2 before 17.11.5, 18.0 before 18.0.3, and 18.1 before 18.1.1 that could have allowed unauthenticated attackers to upload arbitrary files to public projects by sending crafted API requests, potentially leading to resource...

5.3CVSS6.1AI score0.00231EPSS
Exploits0References3
NVD
NVD
added 2025/06/20 8:15 p.m.11 views

CVE-2023-5600

An issue has been discovered in GitLab EE affecting all versions starting from 16.0 before 16.3.6, all versions starting from 16.4 before 16.4.2, all versions starting from 16.5 before 16.5.1. Arbitrary access to the titles of an private specific references could be leaked through the service-des...

3.1CVSS0.00224EPSS
Exploits1References2
CVE
CVE
added 2025/06/20 1:58 p.m.38 views

CVE-2024-7586

GitLab EE vulnerability CVE-2024-7586 affects GitLab EE versions: 17.0 up to but not including 17.0.6, 17.1 up to but not including 17.1.4, and 17.2 up to but not including 17.2.2. The issue is that webhook deletion audit logs can preserve auth credentials. A fix exists in the subsequent release ...

7.5CVSS7.8AI score0.00263EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2025/06/14 6:15 a.m.7 views

BIT-GITLAB-2025-1516 Allocation of Resources Without Limits or Throttling in GitLab

An issue has been discovered in GitLab CE/EE affecting all versions from 8.7 before 17.10.8, 17.11 before 17.11.4, and 18.0 before 18.0.2. Improper input validation in Tokens Names could be used to trigger a denial of service...

7.5CVSS6.3AI score0.00357EPSS
Exploits0References3
OSV
OSV
added 2025/06/14 6:14 a.m.8 views

BIT-GITLAB-2024-9512 Time-of-check Time-of-use (TOCTOU) Race Condition in GitLab

An issue has been discovered in GitLab EE affecting all versions prior to 17.10.8, 17.11 prior to 17.11.4, and 18.0 prior to 18.0.2. It may have been possible for private repository to be cloned in case of race condition when a secondary node is out of sync...

5.9CVSS5.5AI score0.00217EPSS
Exploits0References3
NVD
NVD
added 2025/06/12 5:15 p.m.11 views

CVE-2025-5982

An issue has been discovered in GitLab EE affecting all versions from 12.0 before 17.10.8, 17.11 before 17.11.4, and 18.0 before 18.0.2. Under certain conditions users could bypass IP access restrictions and view sensitive information...

7.5CVSS0.0026EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/06/12 4:27 p.m.7 views

CVE-2025-5982 Insufficient Granularity of Access Control in GitLab

An issue has been discovered in GitLab EE affecting all versions from 12.0 before 17.10.8, 17.11 before 17.11.4, and 18.0 before 18.0.2. Under certain conditions users could bypass IP access restrictions and view sensitive information...

3.7CVSS6.8AI score0.0026EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2025/06/12 10:2 a.m.8 views

CVE-2025-1516

Removed by vendor...

7.5CVSS5.8AI score0.00357EPSS
Exploits0
Rows per page
Query Builder