Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gitlab gitlab vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-4532
An issue has been discovered in GitLab affecting all versions starting from 16.2 prior to 16.2.8, all versions starting from 16.3 prior to 16.3.5, all versions starting from 16.4 prior to 16.4.1. Users were capable of linking CI/CD jobs of private projects which they are not a me...
Gitlab Gitlab
Gitlab Gitlab 16.4.0
NA
CVE-2023-3399
An issue has been discovered in GitLab EE affecting all versions starting from 11.6 prior to 16.3.6, all versions starting from 16.4 prior to 16.4.2, all versions starting from 16.5 prior to 16.5.1. It was possible for an unauthorised project or group member to read the CI/CD var...
Gitlab Gitlab
Gitlab Gitlab 13.0.0
NA
CVE-2023-3102
A sensitive information leak issue has been discovered in GitLab EE affecting all versions starting from 16.0 prior to 16.0.6, all versions starting from 16.1 prior to 16.1.1, which allows access to titles of private issue and MR.
Gitlab Gitlab
Gitlab Gitlab 16.1.0
NA
CVE-2023-3115
An issue has been discovered in GitLab EE affecting all versions affecting all versions from 11.11 before 16.2.8, 16.3 before 16.3.5, and 16.4 before 16.4.1. Single Sign On restrictions were not correctly enforced for indirect project members accessing public members-only project...
Gitlab Gitlab
Gitlab Gitlab 16.4.0
NA
CVE-2022-4343
An issue has been discovered in GitLab EE affecting all versions starting from 13.12 prior to 16.1.5, all versions starting from 16.2 prior to 16.2.5, all versions starting from 16.3 prior to 16.3.1 in which a project member can leak credentials stored in site profile.
Gitlab Gitlab 16.3.0
Gitlab Gitlab
5
CVSSv2
CVE-2022-1963
An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.4 prior to 14.10.5, all versions starting from 15.0 prior to 15.0.4, all versions starting from 15.1 prior to 15.1.1. GitLab reveals if a user has enabled two-factor authentication on their accou...
Gitlab Gitlab 15.1.0
Gitlab Gitlab
4
CVSSv2
CVE-2022-1983
Incorrect authorization in GitLab EE affecting all versions from 10.7 before 14.10.5, 15.0 before 15.0.4, and 15.1 before 15.1.1, allowed an attacker already in possession of a valid Deploy Key or a Deploy Token to misuse it from any location to access Container Registries even w...
Gitlab Gitlab 15.1.0
Gitlab Gitlab
NA
CVE-2022-4255
An info leak issue was identified in all versions of GitLab EE from 13.7 before 15.4.6, 15.5 before 15.5.5, and 15.6 before 15.6.1 which exposes user email id through webhook payload.
Gitlab Gitlab 15.6.0
Gitlab Gitlab
NA
CVE-2023-0319
An issue has been discovered in GitLab affecting all versions starting from 13.6 prior to 15.8.5, all versions starting from 15.9 prior to 15.9.4, all versions starting from 15.10 prior to 15.10.1, allowing to read environment names supposed to be restricted to project memebers o...
Gitlab Gitlab 15.10.0
Gitlab Gitlab
NA
CVE-2023-3205
An issue has been discovered in GitLab affecting all versions starting from 15.11 prior to 16.1.5, all versions starting from 16.2 prior to 16.2.5, all versions starting from 16.3 prior to 16.3.1. An authenticated user could trigger a denial of service when importing or cloning m...
Gitlab Gitlab 16.3.0
Gitlab Gitlab
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
man-in-the-middle
CVE-2024-34558
CVE-2024-32674
CVE-2024-34351
XPath injection
CVE-2023-45866
CVE-2024-25528
CVE-2024-25517
path traversal
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
6
7
8
9
10
NEXT »