Lucene search
K

5 matches found

UbuntuCve
UbuntuCve
added 2025/01/24 3:15 a.m.11 views

CVE-2024-11931

An issue has been discovered in GitLab CE/EE affecting all versions starting from 17.0 prior to 17.6.4, from 17.7 prior to 17.7.3, and from 17.8 prior to 17.8.1. Under certain conditions, it may have been possible for users with developer role to exfiltrate protected CI variables via CI lint...

6.4CVSS5.8AI score0.0031EPSS
Exploits1References2
UbuntuCve
UbuntuCve
added 2025/01/08 9:15 p.m.8 views

CVE-2024-12431

An issue was discovered in GitLab CE/EE affecting all versions starting from 15.5 before 17.5.5, 17.6 before 17.6.3, and 17.7 before 17.7.1, in which unauthorized users could manipulate the status of issues in public projects...

4.3CVSS5.9AI score0.00422EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2024/12/12 12:0 a.m.12 views

CVE-2024-11274

An issue was discovered in GitLab CE/EE affecting all versions starting from 16.1 prior to 17.4.6, starting from 17.5 prior to 17.5.4, and starting from 17.6 prior to 17.6.2, injection of NEL headers in k8s proxy response could lead to session data exfiltration...

8.7CVSS5.9AI score0.00472EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2024/12/12 12:0 a.m.15 views

CVE-2024-8179

An issue has been discovered in GitLab CE/EE affecting all versions from 17.3 before 17.4.6, 17.5 before 17.5.4, and 17.6 before 17.6.2. Improper output encoding could lead to XSS if CSP is not enabled...

5.4CVSS5.8AI score0.00323EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2024/09/26 11:15 p.m.9 views

CVE-2024-8974

Information disclosure in Gitlab EE/CE affecting all versions from 15.6 prior to 17.2.8, 17.3 prior to 17.3.4, and 17.4 prior to 17.4.1 in specific conditions it was possible to disclose to an unauthorised user the path of a private project."...

4.3CVSS5.8AI score0.00276EPSS
Exploits0References2
Rows per page
Query Builder