CVE-2022-4201: Uncovering a Blind SSRF Vulnerability in GitLab CE/EE 11.3 to 15.4.6, 15.5.5, and 15.6.1 — A Threat to Malicious GitLab Runner Configurations
In today's post, we will dive deep into the world of server-side request forgery (SSRF) vulnerabilities, specifically the recently discovered CVE-2022-4201 affecting GitLab.
CVE-2022-4335: Uncovering the Blind SSRF Vulnerability in GitLab EE
Recently, security researchers discovered a critical vulnerability in various versions of GitLab Enterprise Edition (EE). The vulnerability, identified as CVE-2022-4335, affects all versions of GitLab
CVE-2022-4092 - GitLab EE Vulnerability: README Page Remote Code Execution in Versions 15.6 and Earlier
A new vulnerability has been reported in GitLab EE, with the identifier CVE-2022-4092. This critical issue affects all GitLab EE versions starting from 15.6,
CVE-2022-4054 - GitLab Webhook Secret Token Leak Vulnerability
A security vulnerability, CVE-2022-4054, has been discovered in GitLab, which is a popular web-based Git repository manager. This vulnerability affects all versions starting from 9.
CVE-2022-3482: Unauthorized Access to Release Names in GitLab CE/EE - Exploit Details and Mitigation Steps
A recent vulnerability dubbed as CVE-2022-3482 has been discovered in GitLab CE/EE (Community Edition and Enterprise Edition), impacting all versions from 11.3 prior
Episode
00:00:00
00:00:00