15 matches found
CVE-2023-4630
An issue has been discovered in GitLab affecting all versions starting from 10.6 before 16.1.5, all versions starting from 16.2 before 16.2.5, all versions starting from 16.3 before 16.3.1 in which any user can read limited information about any project's imports...
EUVD-2023-54483
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2023-4630
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue has been discovered in GitLab affecting all versions starting from 10.6 before 16.1.5, all versions starting from 16.2 before 16.2.5, all versions...
Linux Distros Unpatched Vulnerability : CVE-2024-4901
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in GitLab CE/EE affecting all versions starting from 16.9 prior to 16.11.5, starting from 17.0 prior to 17.0.3, and starting from 17.1...
Sensitive Information Disclosure
gitlab:sid is vulnerable to Sensitive Information Disclosure. The vulnerability is due to the exposure of sensitive information which affects in GitLab versions from 10.6 before 16.1.5. This vulnerability allows the attacker to read limited information about any project's imports...
Uncontrolled Resource Consumption
gitlab is vulnerable to Uncontrolled Resource Consumption. The vulnerability is due to When GitLab imports a project containing a Tar archive, and this archive includes a FIFO file, it causes the import process to get stuck. An attacker can exploit this by creating a Tar archive containing a FIFO...
CVE-2023-4630
An issue has been discovered in GitLab affecting all versions starting from 10.6 before 16.1.5, all versions starting from 16.2 before 16.2.5, all versions starting from 16.3 before 16.3.1 in which any user can read limited information about any project's imports...
UBUNTU-CVE-2023-4630
An issue has been discovered in GitLab affecting all versions starting from 10.6 before 16.1.5, all versions starting from 16.2 before 16.2.5, all versions starting from 16.3 before 16.3.1 in which any user can read limited information about any project's imports...
CVE-2023-4630 Missing Authorization in GitLab
An issue has been discovered in GitLab affecting all versions starting from 10.6 before 16.1.5, all versions starting from 16.2 before 16.2.5, all versions starting from 16.3 before 16.3.1 in which any user can read limited information about any project's imports...
CVE-2023-4630
Removed by vendor...
CVE-2023-4630 Missing Authorization in GitLab
An issue has been discovered in GitLab affecting all versions starting from 10.6 before 16.1.5, all versions starting from 16.2 before 16.2.5, all versions starting from 16.3 before 16.3.1 in which any user can read limited information about any project's imports...
CVE-2023-4630
An issue has been discovered in GitLab affecting all versions starting from 10.6 before 16.1.5, all versions starting from 16.2 before 16.2.5, all versions starting from 16.3 before 16.3.1 in which any user can read limited information about any project's imports...
PT-2023-29945 · Gitlab · Gitlab
Name of the Vulnerable Software and Affected Versions: GitLab versions 10.6 through 16.1.5 GitLab versions 16.2 through 16.2.5 GitLab versions 16.3 through 16.3.1 Description: An issue has been discovered in GitLab where any user can read limited information about any project's imports...
PT-2022-4651 · Gitlab · Gitlab
Name of the Vulnerable Software and Affected Versions: GitLab versions 14.0 through 14.10.5 GitLab versions 15.0 through 15.0.4 GitLab versions 15.1 through 15.1.1 Description: The issue is related to the improper assignment of permissions for a critical resource in GitLab, allowing an...
Remote Command Execution in git client (CVE-2017-12426)
Remote Command Execution in git client CVE-2017-12426 An external code review performed by Recurity-Labs identified a remote command execution vulnerability in git that could be exploited via the "Repo by URL" import option in GitLab. The command line git client was not properly escaping command...