Gitlab ≫ GitLab

1271 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.

5.3

CVE-2022-4131

EPSS 0.37%
Veröffentlicht 12.01.2023 04:15:10
Zuletzt bearbeitet 08.04.2025 17:15:33

An issue has been discovered in GitLab CE/EE affecting all versions starting from 10.8 before 15.5.7, all versions starting from 15.6 before 15.6.4, all versions starting from 15.7 before 15.7.2. An attacker may cause Denial of Service on a GitLab in...

7.5

CVE-2022-4167

EPSS 0.19%
Veröffentlicht 12.01.2023 04:15:10
Zuletzt bearbeitet 08.04.2025 17:15:33

Incorrect Authorization check affecting all versions of GitLab EE from 13.11 prior to 15.5.7, 15.6 prior to 15.6.4, and 15.7 prior to 15.7.2 allows group access tokens to continue working even after the group owner loses the ability to revoke them.

3.8

CVE-2022-4342

EPSS 1.6%
Veröffentlicht 12.01.2023 04:15:10
Zuletzt bearbeitet 21.11.2024 07:35:05

An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.1 before 15.5.7, all versions starting from 15.6 before 15.6.4, all versions starting from 15.7 before 15.7.2. A malicious Maintainer can leak masked webhook secrets...

4.3

CVE-2022-4365

EPSS 0.66%
Veröffentlicht 12.01.2023 04:15:10
Zuletzt bearbeitet 08.04.2025 14:15:29

An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.8 before 15.5.7, all versions starting from 15.6 before 15.6.4, all versions starting from 15.7 before 15.7.2. A malicious Maintainer can leak the sentry token by ch...

6.1

CVE-2023-0042

EPSS 0.17%
Veröffentlicht 12.01.2023 04:15:10
Zuletzt bearbeitet 08.04.2025 14:15:30

An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.4 prior to 15.5.7, 15.6 prior to 15.6.4, and 15.7 prior to 15.7.2. GitLab Pages allows redirection to arbitrary protocols.

8.5

CVE-2022-4037

EPSS 0.53%
Veröffentlicht 12.01.2023 04:15:09
Zuletzt bearbeitet 08.04.2025 17:15:32

An issue has been discovered in GitLab CE/EE affecting all versions before 15.5.7, all versions starting from 15.6 before 15.6.4, all versions starting from 15.7 before 15.7.2. A race condition can lead to verified email forgery and takeover of third...

5.3

CVE-2022-3514

EPSS 0.11%
Veröffentlicht 12.01.2023 04:15:08
Zuletzt bearbeitet 08.04.2025 16:15:19

An issue has been discovered in GitLab CE/EE affecting all versions starting from 6.6 before 15.5.7, all versions starting from 15.6 before 15.6.4, all versions starting from 15.7 before 15.7.2. An attacker may cause Denial of Service on a GitLab ins...

5.4

CVE-2022-3573

EPSS 0.83%
Veröffentlicht 12.01.2023 04:15:08
Zuletzt bearbeitet 08.04.2025 16:15:22

An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.4 before 15.5.7, all versions starting from 15.6 before 15.6.4, all versions starting from 15.7 before 15.7.2. Due to the improper filtering of query parameters in t...

7.5

CVE-2022-3613

EPSS 0.25%
Veröffentlicht 12.01.2023 04:15:08
Zuletzt bearbeitet 08.04.2025 16:15:23

An issue has been discovered in GitLab CE/EE affecting all versions before 15.5.7, all versions starting from 15.6 before 15.6.4, all versions starting from 15.7 before 15.7.2. A crafted Prometheus Server query can cause high resource consumption and...

5.3

CVE-2022-3870

EPSS 1.74%
Veröffentlicht 12.01.2023 04:15:08
Zuletzt bearbeitet 09.04.2025 14:15:24

An issue has been discovered in GitLab CE/EE affecting all versions starting from 10.0 before 15.5.7, all versions starting from 15.6 before 15.6.4, all versions starting from 15.7 before 15.7.2. GitLab allows unauthenticated users to download user a...

<1...47484950515253...128>