Lucene search

Veracode Vulnerability DatabaseVERACODE:44830

HistoryDec 26, 2023 - 5:39 a.m.

Code Injection

2023-12-2605:39:41

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

code injection

gitlab

vulnerability

branch validation

repository manipulation

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

6.6 Medium

AI Score

Confidence

Low

0.0005 Low

EPSS

Percentile

17.5%

JSON

gitlab is vulnerable for Code Injection. The vulnerability is due to there is no validation or sanitization for branch names. this allows an attacker can bypass branch protection rules using specially crafted branch names. This flaw enabled unauthorized manipulation of repository content in the GitLab UI.

CPENameOperatorVersion
gitlab:sideq13.4.7-2
gitlab:sideq13.3.9-1
gitlab:sideq13.4.7-2
gitlab:sideq13.3.9-1

Name	Operator	Version
gitlab:sid	eq	13.4.7-2
gitlab:sid	eq	13.3.9-1
gitlab:sid	eq	13.4.7-2
gitlab:sid	eq	13.3.9-1

References

gitlab.com/gitlab-org/gitlab/-/issues/426400

hackerone.com/reports/2173053

security-tracker.debian.org/tracker/CVE-2023-5226

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

6.6 Medium

AI Score

Confidence

Low

0.0005 Low

EPSS

Percentile

17.5%

JSON

Related for VERACODE:44830