Lucene search
Veracode Vulnerability DatabaseVERACODE:41492HistoryJul 22, 2023 - 9:36 p.m.
Information Disclosure
2023-07-2221:36:18
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
6
0.002 Low
EPSS
Percentile
56.2%
gitlab is vulnerable to Information Disclosure. When external authorization is enabled, a group owner may be able to overcome it in order to access git repositories and package registries by utilizing deploy tokens or deploy keys.
| CPE | Name | Operator | Version |
|---|---|---|---|
| gitlab:sid | eq | 13.4.7-2 | |
| gitlab:sid | eq | 13.3.9-1 | |
| gitlab:sid | eq | 13.4.7-2 | |
| gitlab:sid | eq | 13.3.9-1 |
Related
osv
osv
CVE-2022-3740
2023-01-26 21:15:58
BIT-gitlab-2022-3740
2024-03-06 11:13:57
prion
prion
Authorization
2023-01-26 21:15:00
debiancve
debiancve
CVE-2022-3740
2023-01-26 21:15:00
nessus
nessus
GitLab 12.9 < 15.4.6 / 15.5 < 15.5.5 / 15.6 < 15.6.1 (CVE-2022-3740)
2023-01-16 00:00:00
ubuntucve
ubuntucve
CVE-2022-3740
2023-01-26 00:00:00
cve
cve
CVE-2022-3740
2023-01-26 21:15:00
freebsd
freebsd
Gitlab -- Multiple Vulnerabilities
2022-11-30 00:00:00