Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gitlab gitlab 15.2 vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2022-2512
An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.0 prior to 15.0.5, all versions starting from 15.1 prior to 15.1.4, all versions starting from 15.2 prior to 15.2.1. Membership changes are not reflected in TODO for confidential notes, allowing ...
Gitlab Gitlab
Gitlab Gitlab 15.2
3.8
CVSSv3
CVE-2022-2307
A lack of cascading deletes in GitLab CE/EE affecting all versions starting from 13.0 prior to 15.0.5, all versions starting from 15.1 prior to 15.1.4, all versions starting from 15.2 prior to 15.2.1 allows a malicious Group Owner to retain a usable Group Access Token even after ...
Gitlab Gitlab
Gitlab Gitlab 15.2
4.5
CVSSv3
CVE-2022-2417
Insufficient validation in GitLab CE/EE affecting all versions from 12.10 before 15.0.5, 15.1 before 15.1.4, and 15.2 before 15.2.1 allows an authenticated and authorised user to import a project that includes branch names which are 40 hexadecimal characters, which could be abuse...
Gitlab Gitlab
Gitlab Gitlab 15.2
8.1
CVSSv3
CVE-2022-2326
An issue has been discovered in GitLab CE/EE affecting all versions prior to 15.0.5, all versions starting from 15.1 prior to 15.1.4, all versions starting from 15.2 prior to 15.2.1. It may be possible to gain access to a private project through an email invite by using other use...
Gitlab Gitlab
Gitlab Gitlab 15.2
4.3
CVSSv3
CVE-2022-2303
An issue has been discovered in GitLab CE/EE affecting all versions prior to 15.0.5, all versions starting from 15.1 prior to 15.1.4, all versions starting from 15.2 prior to 15.2.1. It may be possible for group members to bypass 2FA enforcement enabled at the group level by usin...
Gitlab Gitlab
Gitlab Gitlab 15.2
2.7
CVSSv3
CVE-2022-2459
An issue has been discovered in GitLab EE affecting all versions prior to 15.0.5, all versions starting from 15.1 prior to 15.1.4, all versions starting from 15.2 prior to 15.2.1. It may be possible for email invited members to join a project even after the Group Owner has enable...
Gitlab Gitlab
Gitlab Gitlab 15.2
2.7
CVSSv3
CVE-2022-2456
An issue has been discovered in GitLab CE/EE affecting all versions prior to 15.0.5, all versions starting from 15.1 prior to 15.1.4, all versions starting from 15.2 prior to 15.2.1. It may be possible for malicious group or project maintainers to change their corresponding group...
Gitlab Gitlab
Gitlab Gitlab 15.2
5.3
CVSSv3
CVE-2022-2534
An issue has been discovered in GitLab CE/EE affecting all versions starting from 9.3 prior to 15.0.5, all versions starting from 15.1 prior to 15.1.4, all versions starting from 15.2 prior to 15.2.1. GitLab was returning contributor emails due to improper data handling in the Da...
Gitlab Gitlab
Gitlab Gitlab 15.2
5.3
CVSSv3
CVE-2022-2539
An issue has been discovered in GitLab CE/EE affecting all versions starting from 14.6 before 15.0.5, 15.1 before 15.1.4, and 15.2 before 15.2.1, allowed a project member to filter issues by contact and organization.
Gitlab Gitlab
Gitlab Gitlab 15.2
4.3
CVSSv3
CVE-2022-2095
An improper access control check in GitLab CE/EE affecting all versions starting from 13.7 prior to 15.0.5, all versions starting from 15.1 prior to 15.1.4, all versions starting from 15.2 prior to 15.2.1 allows a malicious authenticated user to view a public project's Deplo...
Gitlab Gitlab
Gitlab Gitlab 15.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4946
CVE-2024-30309
CVE-2024-4761
CVE-2024-30051
type confusion
memory leak
CVE-2024-30293
reflected XSS
CVE-2024-3126
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »