Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4
CVSSv2

CVE-2021-22231

Published: 07/07/2021 Updated: 09/07/2021
CVSS v2 Base Score: 4 | Impact Score: 2.9 | Exploitability Score: 8
CVSS v3 Base Score: 4.3 | Impact Score: 1.4 | Exploitability Score: 2.8
VMScore: 356
Vector: AV:N/AC:L/Au:S/C:N/I:N/A:P
Subscribe to Gitlab

Vulnerability Summary

A denial of service in user's profile page is found starting with GitLab CE/EE 8.0 that allows malicious user to reject access to their profile page via using a specially crafted username.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

gitlab gitlab

Vendor Advisories

Arch Linux Issues:
A denial of service on the user's profile page is found starting with GitLab CE/EE 80 and before 1402 that allows an attacker to reject access to their profile page by using a specially crafted username ...

References

NVD-CWE-noinfohttps://gitlab.com/gitlab-org/gitlab/-/issues/26295https://hackerone.com/reports/475098https://gitlab.com/gitlab-org/cves/-/blob/master/2021/CVE-2021-22231.jsonhttps://nvd.nist.govhttps://security.archlinux.org/CVE-2021-22231
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4040privilege escalationCVE-2024-4112CVE-2024-32872man-in-the-middleCVE-2024-32788bypassCVE-2024-3400CVE-2024-28976
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook