Gitlab

Gitlab

1222 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2023-6682

  • EPSS 0.09%
  • Veröffentlicht 14.05.2024 14:35:29
  • Zuletzt bearbeitet 12.12.2024 16:34:32

An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.9 prior to 16.9.7, starting from 16.10 prior to 16.10.5, and starting from 16.11 prior to 16.11.2. A problem with the processing logic for Discord Integrations Chat ...

4.3

CVE-2024-4006

Exploit
  • EPSS 0.05%
  • Veröffentlicht 25.04.2024 14:15:09
  • Zuletzt bearbeitet 12.12.2024 17:10:26

An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.7 before 16.9.6, all versions starting from 16.10 before 16.10.4, all versions starting from 16.11 before 16.11.1 where personal access scopes were not honored by Gr...

8.8

CVE-2024-4024

Exploit
  • EPSS 3.77%
  • Veröffentlicht 25.04.2024 14:15:09
  • Zuletzt bearbeitet 12.12.2024 16:52:12

An issue has been discovered in GitLab CE/EE affecting all versions starting from 7.8 before 16.9.6, all versions starting from 16.10 before 16.10.4, all versions starting from 16.11 before 16.11.1. Under certain conditions, an attacker with their Bi...

7.5

CVE-2024-2829

  • EPSS 3.5%
  • Veröffentlicht 25.04.2024 11:15:46
  • Zuletzt bearbeitet 12.12.2024 17:32:37

An issue has been discovered in GitLab CE/EE affecting all versions starting from 12.5 before 16.9.6, all versions starting from 16.10 before 16.10.4, all versions starting from 16.11 before 16.11.1. A crafted wildcard filter in FileFinder may lead t...

5.3

CVE-2024-1347

  • EPSS 0.01%
  • Veröffentlicht 25.04.2024 11:15:45
  • Zuletzt bearbeitet 11.12.2024 19:24:26

An issue has been discovered in GitLab CE/EE affecting all versions before 16.9.6, all versions starting from 16.10 before 16.10.4, all versions starting from 16.11 before 16.11.1. Under certain conditions, an attacker through a crafted email address...

8.1

CVE-2024-2434

Exploit
  • EPSS 4.76%
  • Veröffentlicht 25.04.2024 11:15:45
  • Zuletzt bearbeitet 12.12.2024 17:54:50

An issue has been discovered in GitLab affecting all versions of GitLab CE/EE 16.9 prior to 16.9.6, 16.10 prior to 16.10.4, and 16.11 prior to 16.11.1 where path traversal could lead to DoS and restricted file read.

6.5

CVE-2023-6489

  • EPSS 0.14%
  • Veröffentlicht 12.04.2024 01:15:57
  • Zuletzt bearbeitet 11.12.2024 19:06:06

A denial of service vulnerability was identified in GitLab CE/EE, versions 16.7.7 prior to 16.8.6, 16.9 prior to 16.9.4 and 16.10 prior to 16.10.2 which allows an attacker to spike the GitLab instance resources usage resulting in service degradation ...

6.5

CVE-2023-6678

  • EPSS 0.08%
  • Veröffentlicht 12.04.2024 01:15:57
  • Zuletzt bearbeitet 11.12.2024 19:58:13

An issue has been discovered in GitLab EE affecting all versions before 16.8.6, all versions starting from 16.9 before 16.9.4, all versions starting from 16.10 before 16.10.2. It was possible for an attacker to cause a denial of service using malici...

5.4

CVE-2024-2279

Exploit
  • EPSS 0.67%
  • Veröffentlicht 12.04.2024 01:15:57
  • Zuletzt bearbeitet 11.12.2024 19:29:27

An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.7 to 16.8.6 all versions starting from 16.9 before 16.9.4, all versions starting from 16.10 before 16.10.2. Using the autocomplete for issues references feature a cr...

5.4

CVE-2024-3092

Exploit
  • EPSS 0.67%
  • Veröffentlicht 12.04.2024 01:15:57
  • Zuletzt bearbeitet 11.12.2024 19:19:05

An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.9 before 16.9.4, all versions starting from 16.10 before 16.10.2. A payload may lead to a Stored XSS while using the diff viewer, allowing attackers to perform arbit...