Lucene search
Veracode Vulnerability DatabaseVERACODE:41342HistoryJul 18, 2023 - 3:37 p.m.
Information Disclosure
2023-07-1815:37:42
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
7
gitlab
information disclosure
log format
vulnerability
log files
3.9 Low
CVSS3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N
0.0004 Low
EPSS
Percentile
9.2%
gitlab is vulnerable to Information Disclosure. The vulnerability occurs when the log format is set to default making it possible to insert data into log files.
| CPE | Name | Operator | Version |
|---|---|---|---|
| gitlab:sid | eq | 13.4.7-2 | |
| gitlab:sid | eq | 13.3.9-1 | |
| gitlab:sid | eq | 13.4.7-2 | |
| gitlab:sid | eq | 13.3.9-1 |
Related
nvd
nvd
CVE-2023-3363
2023-07-13 03:15:10
prion
prion
Information disclosure
2023-07-13 03:15:00
osv
osv
BIT-gitlab-2023-3363
2024-03-06 11:05:58
CVE-2023-3363
2023-07-13 03:15:10
cve
cve
CVE-2023-3363
2023-07-13 03:15:10
nessus
nessus
GitLab 13.6 < 15.11.10 / 16.0 < 16.0.6 / 16.1 < 16.1.1 (CVE-2023-3363)
2023-06-29 00:00:00
FreeBSD : Gitlab -- Vulnerabilities (3117e6cd-1772-11ee-9cd6-001b217b3468)
2023-06-30 00:00:00
ubuntucve
ubuntucve
CVE-2023-3363
2023-07-13 00:00:00
debiancve
debiancve
CVE-2023-3363
2023-07-13 03:15:10
cvelist
cvelist
CVE-2023-3363 Insertion of Sensitive Information into Log File in GitLab
2023-07-13 02:08:35
freebsd
freebsd
Gitlab -- Vulnerabilities
2023-06-29 00:00:00
3.9 Low
CVSS3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N
0.0004 Low
EPSS
Percentile
9.2%
Related for VERACODE:41342