Gitlab

Gitlab

1257 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2023-5009

  • EPSS 0.02%
  • Veröffentlicht 19.09.2023 08:16:07
  • Zuletzt bearbeitet 21.11.2024 08:40:52

An issue has been discovered in GitLab EE affecting all versions starting from 13.12 before 16.2.7, all versions starting from 16.3 before 16.3.4. It was possible for an attacker to run pipeline jobs as an arbitrary user via scheduled security scan p...

4.3

CVE-2023-4630

  • EPSS 0.13%
  • Veröffentlicht 11.09.2023 14:15:09
  • Zuletzt bearbeitet 21.11.2024 08:35:34

An issue has been discovered in GitLab affecting all versions starting from 10.6 before 16.1.5, all versions starting from 16.2 before 16.2.5, all versions starting from 16.3 before 16.3.1 in which any user can read limited information about any proj...

5.3

CVE-2023-4018

  • EPSS 0.09%
  • Veröffentlicht 01.09.2023 11:15:43
  • Zuletzt bearbeitet 21.11.2024 08:34:14

An issue has been discovered in GitLab affecting all versions starting from 16.2 before 16.2.5, all versions starting from 16.3 before 16.3.1. Due to improper permission validation it was possible to create model experiments in public projects.

4.3

CVE-2023-4378

  • EPSS 0.11%
  • Veröffentlicht 01.09.2023 11:15:43
  • Zuletzt bearbeitet 21.11.2024 08:34:57

An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.8 before 16.1.5, all versions starting from 16.2 before 16.2.5, all versions starting from 16.3 before 16.3.1. A malicious Maintainer can, under specific circumstanc...

7.5

CVE-2023-4647

  • EPSS 0.22%
  • Veröffentlicht 01.09.2023 11:15:43
  • Zuletzt bearbeitet 05.05.2025 14:12:17

An issue has been discovered in GitLab affecting all versions starting from 15.2 before 16.1.5, all versions starting from 16.2 before 16.2.5, all versions starting from 16.3 before 16.3.1 in which the projects API pagination can be skipped, potentia...

6.5

CVE-2023-3210

  • EPSS 0.41%
  • Veröffentlicht 01.09.2023 11:15:42
  • Zuletzt bearbeitet 05.05.2025 14:14:12

An issue has been discovered in GitLab affecting all versions starting from 15.11 before 16.1.5, all versions starting from 16.2 before 16.2.5, all versions starting from 16.3 before 16.3.1. An authenticated user could trigger a denial of service whe...

7.2

CVE-2023-3915

  • EPSS 0.03%
  • Veröffentlicht 01.09.2023 11:15:42
  • Zuletzt bearbeitet 21.11.2024 08:18:20

An issue has been discovered in GitLab EE affecting all versions starting from 16.1 before 16.1.5, all versions starting from 16.2 before 16.2.5, all versions starting from 16.3 before 16.3.1. If an external user is given an owner role on any group, ...

3.8

CVE-2023-3950

  • EPSS 0.04%
  • Veröffentlicht 01.09.2023 11:15:42
  • Zuletzt bearbeitet 21.11.2024 08:18:23

An information disclosure issue in GitLab EE affecting all versions from 16.2 prior to 16.2.5, and 16.3 prior to 16.3.1 allowed other Group Owners to see the Public Key for a Google Cloud Logging audit event streaming destination, if configured. Owne...

6.5

CVE-2023-3205

  • EPSS 0.57%
  • Veröffentlicht 01.09.2023 11:15:41
  • Zuletzt bearbeitet 05.05.2025 14:12:22

An issue has been discovered in GitLab affecting all versions starting from 15.11 before 16.1.5, all versions starting from 16.2 before 16.2.5, all versions starting from 16.3 before 16.3.1. An authenticated user could trigger a denial of service whe...

4.3

CVE-2022-4343

  • EPSS 0.04%
  • Veröffentlicht 01.09.2023 11:15:40
  • Zuletzt bearbeitet 21.11.2024 07:35:05

An issue has been discovered in GitLab EE affecting all versions starting from 13.12 before 16.1.5, all versions starting from 16.2 before 16.2.5, all versions starting from 16.3 before 16.3.1 in which a project member can leak credentials stored in ...