Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gitlab gitlab 15.4 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-4539
An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.4 before 16.9.7, starting from 16.10 before 16.10.5, and starting from 16.11 before 16.11.2 where abusing the API to filter branch and tags could lead to Denial of Service.
NA
CVE-2023-0508
An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.4 prior to 15.10.8, all versions starting from 15.11 prior to 15.11.7, all versions starting from 16.0 prior to 16.0.2. Open redirection was possible via HTTP response splitting in the NPM packag...
Gitlab Gitlab
NA
CVE-2023-2132
An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.4 prior to 15.10.8, all versions starting from 15.11 prior to 15.11.7, all versions starting from 16.0 prior to 16.0.2. A DollarMathPostFilter Regular Expression Denial of Service in was possible...
Gitlab Gitlab
NA
CVE-2023-2478
An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.4 prior to 15.9.7, all versions starting from 15.10 prior to 15.10.6, all versions starting from 15.11 prior to 15.11.2. Under certain conditions, a malicious unauthorized GitLab user may use a G...
Gitlab Gitlab
NA
CVE-2022-3740
An issue has been discovered in GitLab CE/EE affecting all versions starting from 12.9 before 15.3.5, 15.4 before 15.4.4, and 15.5 before 15.5.2. A group owner may be able to bypass External Authorization check, if it is enabled, to access git repositories and package registries ...
Gitlab Gitlab 15.6.0
Gitlab Gitlab
NA
CVE-2022-3820
An issue has been discovered in GitLab affecting all versions starting from 15.4 before 15.4.4, and 15.5 before 15.5.2. GitLab was not performing correct authentication with some Package Registries when IP address restrictions were configured, allowing an attacker already in poss...
Gitlab Gitlab 15.6.0
Gitlab Gitlab
NA
CVE-2022-3482
An improper access control issue in GitLab CE/EE affecting all versions from 11.3 before 15.3.5, 15.4 before 15.4.4, and 15.5 before 15.5.2 allowed an unauthorized user to see release names even when releases we set to be restricted to project members only
Gitlab Gitlab 15.6.0
Gitlab Gitlab
NA
CVE-2022-3572
A cross-site scripting issue has been discovered in GitLab CE/EE affecting all versions from 13.5 before 15.3.5, 15.4 before 15.4.4, and 15.5 before 15.5.2. It was possible to exploit a vulnerability in setting the Jira Connect integration which could lead to a reflected XSS that...
Gitlab Gitlab 15.6.0
Gitlab Gitlab
NA
CVE-2022-2251
Improper sanitization of branch names in GitLab Runner affecting all versions before 15.3.5, 15.4 before 15.4.4, and 15.5 before 15.5.2 allows a user who creates a branch with a specially crafted name and gets another user to trigger a pipeline to execute commands in the runner a...
Gitlab Runner
NA
CVE-2022-3573
An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.4 prior to 15.5.7, all versions starting from 15.6 prior to 15.6.4, all versions starting from 15.7 prior to 15.7.2. Due to the improper filtering of query parameters in the wiki changes page, an...
Gitlab Gitlab
Abb Drive Composer
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »