Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gitlab gitlab 16.4.0 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-3917
Denial of Service in pipelines affecting all versions of Gitlab EE and CE before 16.2.8, 16.3 before 16.3.5, and 16.4 before 16.4.1 allows malicious user to cause pipelines to fail.
Gitlab Gitlab
Gitlab Gitlab 16.4.0
NA
CVE-2023-3920
An issue has been discovered in GitLab affecting all versions starting from 11.2 prior to 16.2.8, all versions starting from 16.3 prior to 16.3.5, all versions starting from 16.4 prior to 16.4.1. It was possible that a maintainer to create a fork relationship between existing pro...
Gitlab Gitlab
Gitlab Gitlab 16.4.0
NA
CVE-2023-3922
An issue has been discovered in GitLab affecting all versions starting from 8.15 prior to 16.2.8, all versions starting from 16.3 prior to 16.3.5, all versions starting from 16.4 prior to 16.4.1. It was possible to hijack some links and buttons on the GitLab UI to a malicious pag...
Gitlab Gitlab
Gitlab Gitlab 16.4.0
NA
CVE-2023-0989
An information disclosure issue in GitLab CE/EE affecting all versions starting from 13.11 before 16.2.8, 16.3 before 16.3.5, and 16.4 before 16.4.1 allows an malicious user to extract non-protected CI/CD variables by tricking a user to visit a fork with a malicious CI/CD configu...
Gitlab Gitlab
Gitlab Gitlab 16.4.0
NA
CVE-2023-3413
An issue has been discovered in GitLab affecting all versions starting from 16.2 prior to 16.2.8, all versions starting from 16.3 prior to 16.3.5, all versions starting from 16.4 prior to 16.4.1. It was possible to read the source code of a project through a fork created before c...
Gitlab Gitlab
Gitlab Gitlab 16.4.0
NA
CVE-2023-5332
Patch in third party library Consul requires 'enable-script-checks' to be set to False. This was required to enable a patch by the vendor. Without this setting the patch could be bypassed. This only affects GitLab-EE.
Gitlab Gitlab
Gitlab Gitlab 16.4.0
Hashicorp Consul
Hashicorp Consul 1.1.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4761
command injection
CVE-2024-3676
IDOR
CVE-2024-30039
CVE-2024-32113
CVE-2024-30049
CVE-2024-4776
SQL injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2