Lucene search
+L

27 matches found

redhatcve
redhatcve
added 2026/01/09 9:26 a.m.5 views

CVE-2023-4378

An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.8 before 16.1.5, all versions starting from 16.2 before 16.2.5, all versions starting from 16.3 before 16.3.1. A malicious Maintainer can, under specific circumstances, leak the sentry token by changing the...

5.5CVSS6.8AI score0.00711EPSS
Exploits0References1
euvd
euvd
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-54242

Malicious code in bioql PyPI...

5.5CVSS5.1AI score0.00429EPSS
Exploits0References2
euvd
euvd
added 2025/10/03 8:7 p.m.9 views

EUVD-2022-51715

Malicious code in bioql PyPI...

5.5CVSS4.8AI score0.00711EPSS
Exploits0References3
nessus
nessus
added 2025/08/30 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2022-4365

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.8 before 15.5.7, all versions starting from 15.6 before 15.6.4, all version...

5.5CVSS5AI score0.00711EPSS
Exploits0References2
nessus
nessus
added 2025/08/27 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2023-4378

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.8 before 16.1.5, all versions starting from 16.2 before 16.2.5, all version...

5.5CVSS5.1AI score0.00429EPSS
Exploits0References2
redhatcve
redhatcve
added 2025/05/23 12:26 a.m.7 views

CVE-2022-4365

An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.8 before 15.5.7, all versions starting from 15.6 before 15.6.4, all versions starting from 15.7 before 15.7.2. A malicious Maintainer can leak the sentry token by changing the configured URL in the Sentry error...

5.5CVSS5.1AI score0.00711EPSS
Exploits0References1
nessus
nessus
added 2024/05/17 12:0 a.m.33 views

GitLab 11.8 < 16.1.5 / 16.2 < 16.2.5 / 16.3 < 16.3.1 (CVE-2023-4378)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.8 before 16.1.5, all versions starting from 16.2 before 16.2.5, all versions starting from 16.3 before 16.3.1. A...

5.5CVSS5.2AI score0.00429EPSS
Exploits0References4
nessus
nessus
added 2024/01/03 12:0 a.m.36 views

GitLab 11.8 < 15.5.7 / 15.6 < 15.6.4 / 15.7 < 15.7.2 (CVE-2022-4365)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.8 before 15.5.7, all versions starting from 15.6 before 15.6.4, all versions starting from 15.7 before 15.7.2. A...

5.5CVSS5.1AI score0.00711EPSS
Exploits0References4
attackerkb
attackerkb
added 2023/09/01 11:15 a.m.12 views

CVE-2023-4378

An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.8 before 16.1.5, all versions starting from 16.2 before 16.2.5, all versions starting from 16.3 before 16.3.1. A malicious Maintainer can, under specific circumstances, leak the sentry token by changing the...

5.5CVSS5.7AI score0.00711EPSS
Exploits0References3Affected Software1
prion
prion
added 2023/09/01 11:15 a.m.53 views

Design/Logic Flaw

An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.8 before 16.1.5, all versions starting from 16.2 before 16.2.5, all versions starting from 16.3 before 16.3.1. A malicious Maintainer can, under specific circumstances, leak the sentry token by changing the...

4CVSS4.5AI score0.00711EPSS
Exploits0References2Affected Software1
osv
osv
added 2023/09/01 11:15 a.m.5 views

UBUNTU-CVE-2023-4378

An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.8 before 16.1.5, all versions starting from 16.2 before 16.2.5, all versions starting from 16.3 before 16.3.1. A malicious Maintainer can, under specific circumstances, leak the sentry token by changing the...

5.5CVSS5.8AI score0.00429EPSS
Exploits0References4
cve
cve
added 2023/09/01 10:30 a.m.94 views

CVE-2023-4378

GitLab CVE-2023-4378 affects GitLab CE/EE versions: 11.8–16.1.4, 16.2.0–16.2.4, and 16.3.0–16.3.0 (i.e., before 16.1.5, 16.2.5, and 16.3.1 respectively). The issue enables a Maintainer to leak the Sentry token by altering the Sentry error-tracking URL, stemming from an incomplete fix for CVE-2022...

5.5CVSS4.8AI score0.00429EPSS
Exploits0References2Affected Software1
debiancve
debiancve
added 2023/09/01 10:30 a.m.65 views

CVE-2023-4378

Removed by vendor...

5.5CVSS5.8AI score0.00429EPSS
Exploits0
osv
osv
added 2023/09/01 10:30 a.m.16 views

CVE-2023-4378 Insertion of Sensitive Information Into Sent Data in GitLab

An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.8 before 16.1.5, all versions starting from 16.2 before 16.2.5, all versions starting from 16.3 before 16.3.1. A malicious Maintainer can, under specific circumstances, leak the sentry token by changing the...

5.5CVSS5AI score0.00429EPSS
Exploits0References5
cnnvd
cnnvd
added 2023/09/01 12:0 a.m.6 views

GitLab Security Breach

GitLab is an open source, end-to-end software development platform from GitLab, Inc. with built-in version control, issue tracking, code review, CI/CD continuous integration and continuous delivery, and other features. GitLab suffers from a security vulnerability that stems from the fact that und...

5.5CVSS7AI score0.00429EPSS
Exploits0References4
ptsecurity
ptsecurity
added 2023/09/01 12:0 a.m.5 views

PT-2023-28979 · Gitlab · Gitlab Ce/Ee +1

Name of the Vulnerable Software and Affected Versions: GitLab CE/EE versions 11.8 through 16.1.4 GitLab CE/EE versions 16.2 through 16.2.4 GitLab CE/EE versions 16.3 through 16.3.0 Description: An issue has been discovered that allows a malicious Maintainer to leak the sentry token under specific...

5.5CVSS6.5AI score0.00429EPSS
Exploits0References11
hackerone
hackerone
added 2023/08/09 7:17 p.m.16 views

GitLab: Maintainer can leak sentry token by changing the configured URL (fix bypass)

A malicious Maintainer could have leaked the sentry token by changing the configured URL in the Sentry error tracking settings page. This was as a result of an incomplete fix for CVE-2022-4365...

5.5CVSS6.6AI score0.00711EPSS
Exploits0
veracode
veracode
added 2023/08/07 12:36 a.m.32 views

Information Disclosure

gitlab is vulnerable to Information Disclosure. A malicious authenticated maintainer is able to leak the sentry token by changing the configured URL in the sentry error tracking settings page...

5.5CVSS6.7AI score0.00711EPSS
Exploits0References4Affected Software1
nvd
nvd
added 2023/01/12 4:15 a.m.18 views

CVE-2022-4365

An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.8 before 15.5.7, all versions starting from 15.6 before 15.6.4, all versions starting from 15.7 before 15.7.2. A malicious Maintainer can leak the sentry token by changing the configured URL in the Sentry error...

5.5CVSS4.5AI score0.00711EPSS
Exploits0References3
ubuntucve
ubuntucve
added 2023/01/12 4:15 a.m.35 views

CVE-2022-4365

An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.8 before 15.5.7, all versions starting from 15.6 before 15.6.4, all versions starting from 15.7 before 15.7.2. A malicious Maintainer can leak the sentry token by changing the configured URL in the Sentry error...

5.5CVSS5.8AI score0.00711EPSS
Exploits0References4
Rows per page
Query Builder