Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3 matches found

OSV
OSVadded 2024/12/16 7:24 a.m.15 views

BIT-GITLAB-2024-11274 URL Redirection to Untrusted Site ('Open Redirect') in GitLab

An issue was discovered in GitLab CE/EE affecting all versions starting from 16.1 prior to 17.4.6, starting from 17.5 prior to 17.5.4, and starting from 17.6 prior to 17.6.2, injection of NEL headers in k8s proxy response could lead to session data exfiltration...

8.7CVSS8.3AI score0.00463EPSS
Exploits1References3
CVE
CVEadded 2024/12/12 12:2 p.m.307 views

CVE-2024-11274

CVE-2024-11274 affects GitLab CE/EE: all versions from 16.1 up to 17.4.6, from 17.5 up to 17.5.4, and from 17.6 up to 17.6.2. The vulnerability is the injection of Network Error Logging (NEL) headers in Kubernetes proxy responses, which could lead to session data exfiltration. The available conne...

8.7CVSS8.5AI score0.00463EPSS
Exploits1References2Affected Software1
Debian CVE
Debian CVEadded 2024/12/12 12:2 p.m.8 views

CVE-2024-11274

Removed by vendor...

8.7CVSS5.8AI score0.00463EPSS
Exploits1
Rows per page
Query Builder