Lucene search
K

1981 matches found

EUVD
EUVD
added 2025/11/15 9:30 a.m.7 views

EUVD-2025-197692

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 13.2 before 18.3.6, 18.4 before 18.4.4, and 18.5 before 18.5.2 that could have allowed an authenticated attacker with reporter access to view branch names and pipeline details by accessing the packages API endpoint even wh...

5.3CVSS6.1AI score0.00231EPSS
Exploits0References4
OSV
OSV
added 2025/11/15 8:4 a.m.4 views

CVE-2025-6171 Missing Authorization in GitLab

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 13.2 before 18.3.6, 18.4 before 18.4.4, and 18.5 before 18.5.2 that could have allowed an authenticated attacker with reporter access to view branch names and pipeline details by accessing the packages API endpoint even wh...

5.3CVSS6.2AI score0.00231EPSS
Exploits0References6
OSV
OSV
added 2025/11/15 8:4 a.m.5 views

CVE-2025-7000 Insertion of Sensitive Information Into Sent Data in GitLab

An issue has been discovered in GitLab CE/EE affecting all versions from 17.6 before 18.3.6, 18.4 before 18.4.4, and 18.5 before 18.5.2, that, under specific conditions, could have allowed unauthorized users to view confidential branch names by accessing project issues with related merge requests...

4.3CVSS6.4AI score0.0031EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2025/10/29 12:0 a.m.7 views

GitLab 17.1 < 18.3.5 / 18.4 < 18.4.3 / 18.5 < 18.5.1 (CVE-2025-11702)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - GitLab has remediated an issue in EE affecting all versions from 17.1 before 18.3.5, 18.4 before 18.4.3, and 18.5 before 18.5.1 that could have allowed an authenticated attacker with specific...

8.8CVSS8.7AI score0.00572EPSS
Exploits0References5
CVE
CVE
added 2025/10/27 12:5 a.m.31 views

CVE-2025-10497

GitLab CVE-2025-10497 affects GitLab CE/EE versions: 17.10–18.3.5 before 18.3.5, 18.4 before 18.4.3, and 18.5 before 18.5.1. An unauthenticated attacker could cause a denial-of-service by sending specially crafted payloads. A patch is available in GitLab 18.5.1 (and related patch releases) to rem...

7.5CVSS6.5AI score0.00588EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2025/10/27 12:5 a.m.5 views

CVE-2025-11974

Removed by vendor...

6.5CVSS5.8AI score0.00351EPSS
Exploits0
CVE
CVE
added 2025/10/27 12:5 a.m.27 views

CVE-2025-11447

CVE-2025-11447 affects GitLab CE/EE with DoS risk from unauthenticated GraphQL requests carrying crafted JSON payloads. Affected versions include 11.0–18.3.5, 18.4 prior to 18.4.3, and 18.5 prior to 18.5.1. Remediation has been issued; updates to GitLab 18.5.1 (and later) address the issue. Explo...

7.5CVSS6.5AI score0.00773EPSS
Exploits0References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/10/26 12:0 a.m.6 views

GitLab 11.0 < 18.3.5 / 18.4 < 18.4.3 / 18.5 < 18.5.1 (CVE-2025-11447)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - Gitlab reports: Improper access control issue in runner API impacts GitLab EE Denial of service issue in event collection impacts GitLab CE/EE Denial of service issue in JSON validation impacts GitLab...

7.5CVSS8.6AI score0.00773EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/10/26 12:0 a.m.6 views

GitLab 10.6 < 18.3.5 / 18.4 < 18.4.3 / 18.5 < 18.5.1 (CVE-2025-11971)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - Gitlab reports: Improper access control issue in runner API impacts GitLab EE Denial of service issue in event collection impacts GitLab CE/EE Denial of service issue in JSON validation impacts GitLab...

6.5CVSS5.5AI score0.00224EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/10/22 12:0 a.m.6 views

PT-2025-43135

Name of the Vulnerable Software and Affected Versions GitLab CE/EE versions 11.0 through 18.3.4 GitLab CE/EE versions 18.4 through 18.4.2 GitLab CE/EE versions 18.5 through 18.5.0 Description An issue has been resolved in GitLab CE/EE that could allow an unauthenticated attacker to cause a denial...

7.8CVSS6.7AI score0.00773EPSS
Exploits0References16
OSV
OSV
added 2025/10/09 12:15 p.m.3 views

UBUNTU-CVE-2025-11340

GitLab has remediated an issue in GitLab EE affecting all versions from 18.3 to 18.3.4, 18.4 to 18.4.2 that, under certain conditions, could have allowed authenticated users with read-only API tokens to perform unauthorized write operations on vulnerability records by exploiting incorrectly scope...

7.7CVSS5.8AI score0.00341EPSS
Exploits0References4
CVE
CVE
added 2025/10/09 11:33 a.m.17 views

CVE-2025-2934

CVE-2025-2934 affects GitLab CE/EE prior to 18.2.8, 18.3 prior to 18.3.4, and 18.4 prior to 18.4.2. An authenticated attacker could induce a denial-of-service by configuring malicious webhook endpoints that send crafted HTTP responses. The issue has been remediated in the patch releases GitLab 18...

6.5CVSS6.3AI score0.00495EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2025/10/09 11:33 a.m.5 views

CVE-2025-2934 Allocation of Resources Without Limits or Throttling in GitLab

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 5.2 prior to 18.2.8, 18.3 prior to 18.3.4, and 18.4 prior to 18.4.2 that could have allowed an authenticated attacker to create a denial of service condition by configuring malicious webhook endpoints that send crafted HTT...

4.3CVSS6.2AI score0.00495EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2025/10/09 12:0 a.m.6 views

GitLab 5.2 < 18.2.8 / 18.3 < 18.3.4 / 18.4 < 18.4.2 (CVE-2025-2934)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - GitLab has remediated an issue in GitLab CE/EE affecting all versions from 5.2 prior to 18.2.8, 18.3 prior to 18.3.4, and 18.4 prior to 18.4.2 that could have allowed an authenticated attacker to crea...

6.5CVSS5.6AI score0.00495EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/10/09 12:0 a.m.6 views

GitLab 13.12 < 18.2.8 / 18.3 < 18.3.4 / 18.4 < 18.4.2 (CVE-2025-10004)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - GitLab has remediated an issue in GitLab CE/EE affecting all versions from 13.12 to 18.2.8, 18.3 to 18.3.4, and 18.4 to 18.4.2 that could make the GitLab instance unresponsive or severely degraded by...

7.5CVSS5.5AI score0.00485EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/10/09 12:0 a.m.5 views

GitLab 18.3 < 18.3.4 / 18.4 < 18.4.2 (CVE-2025-11340)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - GitLab has remediated an issue in GitLab EE affecting all versions from 18.3 to 18.3.4, 18.4 to 18.4.2 that, under certain conditions, could have allowed authenticated users with read-only API tokens ...

7.7CVSS5.6AI score0.00341EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.11 views

EUVD-2020-5586

Malware in sbrugna...

4.3CVSS4.6AI score0.00694EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2021-26289

Malware in sbrugna...

6.5CVSS6.4AI score0.0142EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2020-4590

Malware in sbrugna...

5.3CVSS5.3AI score0.00769EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-16350

Malware in sbrugna...

5.3CVSS6.1AI score0.01637EPSS
Exploits1References3
Rows per page
Query Builder