CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

961 matches found

Vulnrichment•added 2023/04/05 12:0 a.m.•10 views

CVE-2023-1167

Improper authorization in Gitlab EE affecting all versions from 12.3.0 before 15.8.5, all versions starting from 15.9 before 15.9.4, all versions starting from 15.10 before 15.10.1 allows an unauthorized access to security reports in MR...

5.3CVSS5.6AI score0.00335EPSS

Exploits0References2

Cvelist•added 2023/04/05 12:0 a.m.•17 views

CVE-2023-1167

5.3CVSS5.9AI score0.00335EPSS

Exploits0References2

NVD•added 2023/03/09 10:15 p.m.•11 views

CVE-2022-4331

An issue has been discovered in GitLab EE affecting all versions starting from 15.1 before 15.7.8, all versions starting from 15.8 before 15.8.4, all versions starting from 15.9 before 15.9.2. If a group with SAML SSO enabled is transferred to a new namespace as a child group, it's possible...

7.3CVSS6.3AI score0.00317EPSS

Exploits0References3

Prion•added 2023/03/09 10:15 p.m.•19 views

Design/Logic Flaw

4.9CVSS7AI score0.00317EPSS

Exploits0References3Affected Software1

UbuntuCve•added 2023/03/09 8:15 p.m.•17 views

CVE-2023-1084

An issue has been discovered in GitLab CE/EE affecting all versions before 15.7.8, all versions starting from 15.8 before 15.8.4, all versions starting from 15.9 before 15.9.2. A malicious project Maintainer may create a Project Access Token with Owner level privileges using a crafted request...

2.7CVSS5.7AI score0.03384EPSS

Exploits0References4

Debian CVE•added 2023/03/09 12:0 a.m.•21 views

CVE-2022-4331

Removed by vendor...

7.3CVSS7.1AI score0.00317EPSS

Exploits0

OSV•added 2023/03/09 12:0 a.m.•15 views

CVE-2022-4331

5.7CVSS7.3AI score0.00317EPSS

Exploits0References5

Cvelist•added 2023/03/09 12:0 a.m.•25 views

CVE-2022-4331

5.7CVSS7.4AI score0.00317EPSS

Exploits0References3

Positive Technologies•added 2023/02/23 12:0 a.m.•1 views

PT-2023-16588 · Gitlab · Gitlab Ce/Ee

Name of the Vulnerable Software and Affected Versions: GitLab CE/EE versions 14.0 through 15.6.7 GitLab CE/EE versions 15.7 through 15.7.6 GitLab CE/EE versions 15.8 through 15.8.1 Description: An issue has been discovered in GitLab CE/EE that allows a Denial of Service DoS attack by uploading a...

6.2AI score

Exploits0References2

NVD•added 2023/02/13 11:15 p.m.•11 views

CVE-2023-0518

An issue has been discovered in GitLab CE/EE affecting all versions starting from 14.0 before 15.6.7, all versions starting from 15.7 before 15.7.6, all versions starting from 15.8 before 15.8.1. It was possible to trigger a DoS attack by uploading a malicious Helm chart...

7.5CVSS5.4AI score0.01784EPSS

Exploits0References3

UbuntuCve•added 2023/02/13 11:15 p.m.•22 views

CVE-2023-0518

7.5CVSS6.9AI score0.01784EPSS

Exploits0References4

OSV•added 2023/02/13 12:0 a.m.•19 views

CVE-2022-3759

An issue has been discovered in GitLab CE/EE affecting all versions starting from 14.3 before 15.6.7, all versions starting from 15.7 before 15.7.6, all versions starting from 15.8 before 15.8.1. An attacker may upload a crafted CI job artifact zip file in a project that uses dynamic child...

4.3CVSS7.3AI score0.01571EPSS

Exploits0References5

Prion•added 2023/01/27 10:15 p.m.•21 views

Design/Logic Flaw

An info leak issue was identified in all versions of GitLab EE from 13.7 prior to 15.4.6, 15.5 prior to 15.5.5, and 15.6 prior to 15.6.1 which exposes user email id through webhook payload...

5CVSS5AI score0.00136EPSS

Exploits0References2Affected Software1

NVD•added 2023/01/27 6:15 p.m.•13 views

CVE-2022-4335