Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
epic vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv3
CVE-2023-1071
An issue has been discovered in GitLab affecting all versions from 15.5 prior to 15.8.5, all versions starting from 15.9 prior to 15.9.4, all versions starting from 15.10 prior to 15.10.1. Due to improper permissions checks it was possible for an unauthorised user to remove an is...
Gitlab Gitlab 15.10.0
Gitlab Gitlab
4.3
CVSSv3
CVE-2023-1417
An issue has been discovered in GitLab affecting all versions starting from 15.9 prior to 15.9.4, all versions starting from 15.10 prior to 15.10.1. It was possible for an unauthorised user to add child epics linked to victim's epic in an unrelated group.
Gitlab Gitlab 15.10.0
Gitlab Gitlab
7.5
CVSSv3
CVE-2022-27935
Pexip Infinity prior to 27.3 allows remote malicious users to trigger a software abort via Epic Telehealth.
Pexip Pexip Infinity
4.3
CVSSv3
CVE-2021-39886
Permissions rules were not applied while issues were moved between projects of the same group in GitLab versions starting with 10.6 and up to 14.1.7 allowing users to read confidential Epic references.
Gitlab Gitlab
7.8
CVSSv3
CVE-2021-32238
Epic Games / Psyonix Rocket League <=1.95 is affected by Buffer Overflow. Stack-based buffer overflow occurs when Rocket League handles UPK object files that can result in code execution and denial of service scenario.
Psyonix Rocket League
6.5
CVSSv3
CVE-2020-7196
The HPE BlueData EPIC Software Platform version 4.0 and HPE Ezmeral Container Platform 5.0 use an insecure method of handling sensitive Kerberos passwords that is susceptible to unauthorized interception and/or retrieval. Specifically, they display the kdc_admin_password in the s...
Hp Bluedata Epic
Hp Ezmeral Container Platform 5.0
4.3
CVSSv3
CVE-2020-13287
A vulnerability exists in GitLab versions prior to 13.1.10, 13.2.8 and 13.3.4. Project reporters and above could see confidential EPIC attached to confidential issues
Gitlab Gitlab
5.3
CVSSv3
CVE-2020-10090
GitLab 11.7 up to and including 12.8.1 allows Information Disclosure. Under certain group conditions, group epic information was unintentionally being disclosed.
Gitlab Gitlab
6.1
CVSSv3
CVE-2019-12442
An issue exists in GitLab Enterprise Edition 11.7 up to and including 11.11. The epic details page contained a lack of input validation and output encoding issue which resulted in a persistent XSS vulnerability on child epics.
Gitlab Gitlab
7.5
CVSSv3
CVE-2019-5472
An authorization issue exists in Gitlab versions < 12.1.2, < 12.0.4, and < 11.11.6 that prevented owners and maintainer to delete epic comments.
Gitlab Gitlab
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3380
CVE-2024-1694
local file inclusion
CVE-2024-5645
CVE-2024-24919
XSS
CVE-2024-36774
CVE-2024-21306
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »