Command Injection

🗓️ 18 Jan 2023 02:17:51Reported by Veracode Vulnerability DatabaseType

veracode🔗 sca.analysiscenter.veracode.com👁 24 Views

github.com/gitlabhq/gitlab-runner is vulnerable to Command Injection. The library does not properly escape user input commands, allowing an attacker to create a branch with a specially crafted name and get another user to trigger a pipeline to execute commands in the runner as that other user

Reporter	Title	Published	Views	Family All 21
FreeBSD	Gitlab -- Multiple vulnerabilities	2 Nov 202200:00	–	freebsd
Circl	CVE-2022-2251	18 Jan 202300:15	–	circl
CNNVD	GitLab 操作系统命令注入漏洞	4 Nov 202200:00	–	cnnvd
CVE	CVE-2022-2251	17 Jan 202300:00	–	cve
Cvelist	CVE-2022-2251	17 Jan 202300:00	–	cvelist
Debian CVE	CVE-2022-2251	17 Jan 202300:00	–	debiancve
Tenable Nessus	FreeBSD : Gitlab -- Multiple vulnerabilities (16f7ec68-5cce-11ed-9be7-454b1dd82c64)	5 Nov 202200:00	–	nessus
Tenable Nessus	GitLab 0.0 < 15.3.5 / 15.4 < 15.4.4 / 15.5 < 15.5.2 (CVE-2022-2251)	4 Nov 202200:00	–	nessus
Tenable Nessus	Linux Distros Unpatched Vulnerability : CVE-2022-2251	27 Aug 202500:00	–	nessus
NCSC	Vulnerabilities fixed in GitLab enterPrise Edition and Community Edition	3 Nov 202200:00	–	ncsc

Vulners

Node

gitlab gitlabMatch13.4.7-2debian

AND

gitlab gitlabMatch13.3.9-1debian

AND

debian debian_linuxMatch999

gitlabhq github.com/gitlabhq/gitlab-runnerRangev0.7.0–0.7.0go

gitlab-org gitlab.com/gitlab-org/gitlab-runnerRangev0.7.0–0.7.0go

Source	Link
github	www.github.com/gitlabhq/gitlab-runner/commit/935c6cd9eedaa3618d198c663d9a477ce3428435
gitlab	www.gitlab.com/gitlab-org/gitlab-runner/-/issues/27386
gitlab	www.gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-2251.json
github	www.github.com/advisories/GHSA-cxfq-cc8j-j2pp
hackerone	www.hackerone.com/reports/1063511

08 Apr 2025 20:55Current

7.9High risk

Vulners AI Score7.9

CVSS 3.14.8 - 8

EPSS0.01165

SSVC