Gitlab - CVE CyberSecurity Database News (Page 19)

Jan 12, 2023 Gitlab

CVE-2022-4365: GitLab CE/EE Sentry Token Leak Vulnerability in Multiple Versions

A new security vulnerability (CVE-2022-4365) has been discovered in GitLab CE/EE, affecting multiple versions of the software. This vulnerability allows a malicious Maintainer to

Jan 12, 2023 API Gitlab

CVE-2022-4342: GitLab CE/EE Vulnerability - Masked Webhook Secrets Leak

A critical security issue, identified as CVE-2022-4342, has been discovered in GitLab Community Edition (CE) and Enterprise Edition (EE). This issue affects all versions starting

Jan 12, 2023 Exploit Gitlab

CVE-2022-3514: Regex Issue in GitLab Submodule URL Parser Leads to Denial of Service Vulnerability

A security vulnerability has been discovered in GitLab CE/EE that can potentially cause a Denial of Service (DoS) on GitLab instances due to a

Jan 12, 2023 Exploit Gitlab

CVE-2022-3870: GitLab CE/EE Avatar Disclosure Vulnerability for Private Instances - Exploit and Mitigation

A recently discovered vulnerability, CVE-2022-3870, affects GitLab Community Edition (CE) and GitLab Enterprise Edition (EE) and permits unauthenticated individuals to download user avatars using the

Jan 12, 2023 Gitlab

CVE-2022-4167: GitLab EE Incorrect Authorization Check Affecting Group Access Tokens Security Vulnerability

In this post, we will discuss a critical security vulnerability, CVE-2022-4167, affecting all versions of GitLab Enterprise Edition (EE) from 13.11 prior to 15.