Lucene search
Veracode Vulnerability DatabaseVERACODE:42533HistoryAug 07, 2023 - 12:14 a.m.
Information Disclosure
2023-08-0700:14:36
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
11
gitlab
vulnerable
information disclosure
webhook
url
secrets
software
CVSS3
5.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:N
EPSS
0.001
Percentile
21.4%
gitlab is vulnerable to Information Disclosure. The vulnerable allows an attacker to modify a webhook URL to leak masked webhook secrets by manipulating other masked portions.
Related
ubuntucve
ubuntucve
CVE-2023-2620
2023-07-13 00:00:00
prion
prion
Design/Logic Flaw
2023-07-13 03:15:00
osv
osv
CVE-2023-2620
2023-07-13 03:15:09
BIT-gitlab-2023-2620
2024-03-06 11:07:14
cvelist
cvelist
nessus
nessus
GitLab 15.1 < 15.11.10 / 16.0 < 16.0.6 / 16.1 < 16.1.1 (CVE-2023-2620)
2023-06-29 00:00:00
FreeBSD : Gitlab -- Vulnerabilities (3117e6cd-1772-11ee-9cd6-001b217b3468)
2023-06-30 00:00:00
debiancve
debiancve
CVE-2023-2620
2023-07-13 03:15:09
nvd
nvd
CVE-2023-2620
2023-07-13 03:15:09
cve
cve
CVE-2023-2620
2023-07-13 03:15:09
freebsd
freebsd
Gitlab -- Vulnerabilities
2023-06-29 00:00:00
CVSS3
5.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:N
EPSS
0.001
Percentile
21.4%
Related for VERACODE:42533