Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 26/01/2024 Updated: 31/01/2024

CVSS v3 Base Score: 6.5 | Impact Score: 3.6 | Exploitability Score: 2.8

VMScore: 0

An issue has been discovered in GitLab CE/EE affecting all versions from 12.7 before 16.6.6, 16.7 before 16.7.4, and 16.8 before 16.8.1 It was possible for an malicious user to trigger a Regular Expression Denial of Service via a `Cargo.toml` containing maliciously crafted input.

Vulnerable Product	Search on Vulmon	Subscribe to Product
gitlab gitlab 16.8.0
gitlab gitlab

CWE-1333 https://about.gitlab.com/releases/2024/01/25/critical-security-release-gitlab-16-8-1-released/https://gitlab.com/gitlab-org/gitlab/-/issues/431924 https://hackerone.com/reports/2251278 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2023-6159

Vulnerability Summary

Vulnerability Trend

References

Vulmon Search

About

Products

Connect