Lucene search
Quintin Crist of Trend Micro Security ResearchZDI-24-358HistoryApr 01, 2024 - 12:00 a.m.
GitLab Label Description Uncontrolled Resource Consumption Denial-of-Service Vulnerability
2024-04-0100:00:00
Quintin Crist of Trend Micro Security Research
www.zerodayinitiative.com
5
gitlab
uncontrolled resource consumption
dos
vulnerability
authentication required
label descriptions
crafted request
server resources
This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of GitLab. Authentication is required to exploit this vulnerability. The specific flaw exists within the handling of label descriptions. By sending a crafted request, an attacker can consume all available resources on the server. An attacker can leverage this vulnerability to create a denial-of-service condition on the system.
Related
debiancve
debiancve
CVE-2024-2818
2024-03-28 08:15:26
nessus
nessus
GitLab 0 < 16.8.5 / 16.9 < 16.9.3 / 16.10 < 16.10.1 (CVE-2024-2818)
2024-03-27 00:00:00
FreeBSD : Gitlab -- vulnerabilities (d2992bc2-ed18-11ee-96dc-001b217b3468)
2024-03-29 00:00:00
cve
cve
CVE-2024-2818
2024-03-28 08:15:26
osv
osv
CVE-2024-2818
2024-03-28 08:15:26
BIT-gitlab-2024-2818
2024-04-03 10:50:50
nvd
nvd
CVE-2024-2818
2024-03-28 08:15:26
cvelist
cvelist
CVE-2024-2818 Uncontrolled Resource Consumption in GitLab
2024-03-28 07:17:48
freebsd
freebsd
Gitlab -- vulnerabilities
2024-03-27 00:00:00
openvas
openvas
openSUSE: Security Advisory for nghttp2 (SUSE-SU-2024:1167-1)
2024-04-10 00:00:00