CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7 matches found

Tenable Nessus•added 2024/01/02 12:0 a.m.•32 views

GitLab 12.7 < 14.5.4 / 14.6 < 14.6.4 / 14.7 < 14.7.1 (CVE-2022-0390)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - Improper access control in Gitlab CE/EE versions 12.7 to 14.5.4, 14.6 to 14.6.4, and 14.7 to 14.7.1 allowed for project non-members to retrieve issue details when it was linked to an item from the...

4.3CVSS5.2AI score0.00263EPSS

Exploits1References4

OpenVAS•added 2022/06/09 12:0 a.m.•15 views

GitLab 12.7.x < 14.5.4, 14.6.x < 14.6.4, 14.7.x < 14.7.1 Improper Access Vulnerability.

GitLab is prone to an improper access vulnerability. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:gitlab:gitlab"; if descripti...

4.3CVSS4.8AI score0.00263EPSS

Exploits1References2

Prion•added 2022/04/25 5:15 p.m.•9 views

Design/Logic Flaw

An issue has been discovered in GitLab affecting all versions starting from 11.9 before 14.5.4, all versions starting from 14.6.0 before 14.6.4, all versions starting from 14.7.0 before 14.7.1. GitLab was not correctly handling bulk requests to delete existing packages from the package registries...

4CVSS5.1AI score0.00187EPSS

Exploits0References2Affected Software1

OpenVAS•added 2022/04/11 12:0 a.m.•22 views

GitLab 10.x < 14.5.4, 14.6.x < 14.6.4, 14.7.x < 14.7.1 Information Disclosure Vulnerability

GitLab is prone to a information disclosure vulnerability. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:gitlab:gitlab"; if...

4.3CVSS4.7AI score0.00304EPSS

Exploits1References1

OpenVAS•added 2022/04/11 12:0 a.m.•17 views

GitLab 12.4.x < 14.5.4, 14.6.x < 14.6.4, 14.7.x < 14.7.1 Improper Access Control Vulnerability

GitLab is prone to an improper access control vulnerability. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:gitlab:gitlab"; if...

4.3CVSS4.8AI score0.00274EPSS

Exploits1References2

OpenVAS•added 2022/04/11 12:0 a.m.•14 views

GitLab 7.9.x < 14.5.4, 14.6.x < 14.6.4, 14.7.x < 14.7.1 DNS Rebinding Vulnerability

GitLab is prone to a DNS rebinding vulnerability. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:gitlab:gitlab"; if description...

7.6CVSS7.5AI score0.00159EPSS

Exploits0References1

UbuntuCve•added 2022/03/28 7:15 p.m.•28 views

CVE-2022-0371

An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.4 before 14.5.4, all versions starting from 14.6 before 14.6.4, all versions starting from 14.7 before 14.7.1. GitLab search may allow authenticated users to search other users by their respective private emails...

4.3CVSS5.8AI score0.00282EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by