Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gitlab vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-1555
An issue has been discovered in GitLab affecting all versions starting from 15.2 prior to 16.1.5, all versions starting from 16.2 prior to 16.2.5, all versions starting from 16.3 prior to 16.3.1. A namespace-level banned user can access the API.
Gitlab Gitlab 16.3.0
Gitlab Gitlab
NA
CVE-2023-4378
An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.8 prior to 16.1.5, all versions starting from 16.2 prior to 16.2.5, all versions starting from 16.3 prior to 16.3.1. A malicious Maintainer can, under specific circumstances, leak the sentry toke...
Gitlab Gitlab 16.3.0
Gitlab Gitlab
NA
CVE-2023-3950
An information disclosure issue in GitLab EE affecting all versions from 16.2 before 16.2.5, and 16.3 before 16.3.1 allowed other Group Owners to see the Public Key for a Google Cloud Logging audit event streaming destination, if configured. Owners can now only write the key, not...
Gitlab Gitlab 16.3.0
Gitlab Gitlab
NA
CVE-2023-1279
An issue has been discovered in GitLab affecting all versions starting from 4.1 prior to 16.1.5, all versions starting from 16.2 prior to 16.2.5, all versions starting from 16.3 prior to 16.3.1 where it was possible to create a URL that would redirect to a different project.
Gitlab Gitlab 16.3.0
Gitlab Gitlab
NA
CVE-2023-0120
An issue has been discovered in GitLab affecting all versions starting from 10.0 prior to 16.1.5, all versions starting from 16.2 prior to 16.2.5, all versions starting from 16.3 prior to 16.3.1. Due to improper permission validation it was possible to edit labels description by ...
Gitlab Gitlab 16.3.0
Gitlab Gitlab
NA
CVE-2022-4343
An issue has been discovered in GitLab EE affecting all versions starting from 13.12 prior to 16.1.5, all versions starting from 16.2 prior to 16.2.5, all versions starting from 16.3 prior to 16.3.1 in which a project member can leak credentials stored in site profile.
Gitlab Gitlab 16.3.0
Gitlab Gitlab
NA
CVE-2023-4647
An issue has been discovered in GitLab affecting all versions starting from 15.2 prior to 16.1.5, all versions starting from 16.2 prior to 16.2.5, all versions starting from 16.3 prior to 16.3.1 in which the projects API pagination can be skipped, potentially leading to DoS on ce...
Gitlab Gitlab 16.3.0
Gitlab Gitlab
NA
CVE-2023-4522
An issue has been discovered in GitLab affecting all versions prior to 16.2.0. Committing directories containing LF character results in 500 errors when viewing the commit.
Gitlab Gitlab
NA
CVE-2023-4002
An issue has been discovered in GitLab EE affecting all versions starting from 14.1 prior to 16.0.8, all versions starting from 16.1 prior to 16.1.3, all versions starting from 16.2 prior to 16.2.2. It was possible for EE-licensed users to link any security policy project by its ...
Gitlab Gitlab
NA
CVE-2023-4008
An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.9 prior to 16.0.8, all versions starting from 16.1 prior to 16.1.3, all versions starting from 16.2 prior to 16.2.2. It was possible to takeover GitLab Pages with unique domain URLs if the random...
Gitlab Gitlab
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4671
unauthorized
CVE-2024-4776
CVE-2024-3407
CVE-2024-26026
CVE-2024-32888
wireless
CVE-2024-4656
template injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »