GitLab Multiple Vulnerabilities

Release Date: 15 Nov 2024 2898 Views

RISK: Medium Risk

Medium Risk

TYPE: Servers - Other Servers

TYPE: Other Servers

Multiple vulnerabilities were identified in GitLab. A remote attacker could exploit these vulnerabilities to trigger denial of service, cross-site scripting, remote code execution, security restriction bypass, and sensitive information disclosure on the targeted system.

Impact

  • Denial of Service
  • Cross-Site Scripting
  • Remote Code Execution
  • Security Restriction Bypass
  • Information Disclosure

System / Technologies affected

  • GitLab Community Edition (CE) versions prior to 17.3.7, 17.4.4 and 17.5.2
  • GitLab Enterprise Edition (EE) versions prior to 17.3.7, 17.4.4 and 17.5.2

Solutions

Before installation of the software, please visit the vendor web-site for more details.

 

Apply fixes issued by the vendor:

Vulnerability Identifier

Source

Related Link

Related Tags

GitDenial of ServiceCross Site ScriptingRemote Code ExecutionSecurity Restriction BypassInformation Disclosure

Share with

Previous

Ivanti Products Multiple Vulnerabilities

15 Nov 2024 2915 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY