Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gitlab gitlab 15.2 vulnerabilities and exploits
(subscribe to this query)
5.3
CVSSv3
CVE-2022-2531
An issue has been discovered in GitLab EE affecting all versions starting from 12.5 prior to 15.0.5, all versions starting from 15.1 prior to 15.1.4, all versions starting from 15.2 prior to 15.2.1. GitLab was not performing correct authentication on Grafana API under specific co...
Gitlab Gitlab
Gitlab Gitlab 15.2
5.3
CVSSv3
CVE-2022-2534
An issue has been discovered in GitLab CE/EE affecting all versions starting from 9.3 prior to 15.0.5, all versions starting from 15.1 prior to 15.1.4, all versions starting from 15.2 prior to 15.2.1. GitLab was returning contributor emails due to improper data handling in the Da...
Gitlab Gitlab
Gitlab Gitlab 15.2
5.3
CVSSv3
CVE-2022-2539
An issue has been discovered in GitLab CE/EE affecting all versions starting from 14.6 before 15.0.5, 15.1 before 15.1.4, and 15.2 before 15.2.1, allowed a project member to filter issues by contact and organization.
Gitlab Gitlab
Gitlab Gitlab 15.2
4.3
CVSSv3
CVE-2022-2095
An improper access control check in GitLab CE/EE affecting all versions starting from 13.7 prior to 15.0.5, all versions starting from 15.1 prior to 15.1.4, all versions starting from 15.2 prior to 15.2.1 allows a malicious authenticated user to view a public project's Deplo...
Gitlab Gitlab
Gitlab Gitlab 15.2
2.7
CVSSv3
CVE-2022-2456
An issue has been discovered in GitLab CE/EE affecting all versions prior to 15.0.5, all versions starting from 15.1 prior to 15.1.4, all versions starting from 15.2 prior to 15.2.1. It may be possible for malicious group or project maintainers to change their corresponding group...
Gitlab Gitlab
Gitlab Gitlab 15.2
4.5
CVSSv3
CVE-2022-2417
Insufficient validation in GitLab CE/EE affecting all versions from 12.10 before 15.0.5, 15.1 before 15.1.4, and 15.2 before 15.2.1 allows an authenticated and authorised user to import a project that includes branch names which are 40 hexadecimal characters, which could be abuse...
Gitlab Gitlab
Gitlab Gitlab 15.2
4.3
CVSSv3
CVE-2023-1555
An issue has been discovered in GitLab affecting all versions starting from 15.2 prior to 16.1.5, all versions starting from 16.2 prior to 16.2.5, all versions starting from 16.3 prior to 16.3.1. A namespace-level banned user can access the API.
Gitlab Gitlab 16.3.0
Gitlab Gitlab
7.5
CVSSv3
CVE-2023-4647
An issue has been discovered in GitLab affecting all versions starting from 15.2 prior to 16.1.5, all versions starting from 16.2 prior to 16.2.5, all versions starting from 16.3 prior to 16.3.1 in which the projects API pagination can be skipped, potentially leading to DoS on ce...
Gitlab Gitlab 16.3.0
Gitlab Gitlab
5.4
CVSSv3
CVE-2022-2904
A cross-site scripting issue has been discovered in GitLab CE/EE affecting all versions starting from 15.2 prior to 15.2.5, all versions starting from 15.3 prior to 15.3.4, all versions starting from 15.4 prior to 15.4.1 It was possible to exploit a vulnerability in the external ...
Gitlab Gitlab
Gitlab Gitlab 15.4
7.3
CVSSv3
CVE-2022-2428
A crafted tag in the Jupyter Notebook viewer in GitLab EE/CE affecting all versions prior to 15.1.6, 15.2 to 15.2.4, and 15.3 to 15.3.2 allows an malicious user to issue arbitrary HTTP requests
Gitlab Gitlab
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »