Gitlab Enterprise Luki w zabezpieczeniach

Oś czasu

Ostatni rok

Wersja

11.3	100
11.0	99
11.1	97
11.2	97
11.4	86

Przeciwdziałanie

Official Fix	489
Temporary Fix	0
Workaround	0
Unavailable	0
Not Defined	250

Wykorzystywanie

High	2
Functional	0
Proof-of-Concept	0
Unproven	0
Not Defined	737

Wektor dostępu

Not Defined	0
Physical	0
Local	8
Adjacent	12
Network	719

Uwierzytelnianie

Not Defined	0
High	63
Low	365
None	311

Interakcja z użytkownikiem

Not Defined	0
Required	150
None	589

CVSSv3 Base

≤1	0
≤2	1
≤3	8
≤4	65
≤5	189
≤6	224
≤7	163
≤8	58
≤9	29
≤10	2

CVSSv3 Temp

≤1	0
≤2	1
≤3	14
≤4	61
≤5	192
≤6	231
≤7	154
≤8	62
≤9	24
≤10	0

VulDB

≤1	0
≤2	6
≤3	35
≤4	98
≤5	226
≤6	165
≤7	104
≤8	102
≤9	3
≤10	0

NVD

≤1	0
≤2	0
≤3	2
≤4	11
≤5	86
≤6	123
≤7	94
≤8	103
≤9	29
≤10	30

CNA

≤1	0
≤2	2
≤3	15
≤4	35
≤5	92
≤6	60
≤7	49
≤8	25
≤9	18
≤10	12

Sprzedawca

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Exploit 0-day

<1k	109
<2k	468
<5k	161
<10k	0
<25k	1
<50k	0
<100k	0
≥100k	0

Wykorzystaj dzisiaj

<1k	733
<2k	6
<5k	0
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Affected Versions (573): 7.0, 7.1, 7.2, 7.3, 7.4, 7.5, 7.6, 7.7, 7.8, 7.9, 7.10, 8.0, 8.1, 8.2, 8.3, 8.4, 8.5, 8.6, 8.7, 8.8, 8.9, 8.9.6, 8.10, 8.11, 8.12, 8.13, 8.14, 8.15, 8.17, 8.17.1, 8.17.2, 8.17.3, 8.17.4, 8.17.5, 8.17.6, 8.17.7, 9, 9.0, 9.0.1, 9.0.2, 9.0.3, 9.0.4, 9.0.5, 9.0.6, 9.0.7, 9.0.8, 9.0.9, 9.0.11, 9.0.12, 9.1, 9.1.1, 9.1.2, 9.1.3, 9.1.4, 9.1.5, 9.1.6, 9.1.7, 9.1.8, 9.1.9, 9.2, 9.2.1, 9.2.2, 9.2.3, 9.2.4, 9.2.5, 9.2.6, 9.2.7, 9.2.8, 9.2.9, 9.3, 9.3.1, 9.3.2, 9.3.3, 9.3.4, 9.3.5, 9.3.6, 9.3.7, 9.3.8, 9.3.9, 9.4, 9.4.1, 9.4.2, 9.4.3, 9.5, 10.0, 10.1, 10.1.1, 10.1.2, 10.1.3, 10.1.4, 10.1.5, 10.2, 10.2.1, 10.2.2, 10.2.3, 10.2.4, 10.2.5, 10.3, 10.3.1, 10.3.2, 10.3.3, 10.4, 10.5, 10.5.1, 10.5.2, 10.5.3, 10.5.4, 10.5.5, 10.5.6, 10.5.7, 10.6, 10.6.1, 10.6.2, 10.6.3, 10.6.4, 10.7, 10.7.1, 10.7.2, 10.7.3, 10.7.4, 10.7.5, 10.7.6, 10.8, 10.8.1, 10.8.2, 10.8.3, 10.8.4, 10.8.5, 10.8.6, 11, 11.0, 11.0.1, 11.0.2, 11.0.3, 11.0.4, 11.0.5, 11.1, 11.1.1, 11.1.2, 11.1.3, 11.1.4, 11.1.5, 11.1.6, 11.1.7, 11.2, 11.2.1, 11.2.2, 11.2.3, 11.2.4, 11.2.5, 11.2.6, 11.2.7, 11.3, 11.3.1, 11.3.2, 11.3.3, 11.3.4, 11.3.5, 11.3.6, 11.3.7, 11.3.8, 11.3.9, 11.3.11, 11.3.12, 11.3.13, 11.4, 11.4.1, 11.4.2, 11.4.3, 11.4.4, 11.4.5, 11.4.6, 11.4.7, 11.4.8, 11.4.9, 11.4.11, 11.4.12, 11.5, 11.5.0-rc11, 11.5.1, 11.5.2, 11.5.3, 11.5.4, 11.5.5, 11.5.6, 11.5.7, 11.5.8, 11.5.9, 11.6, 11.6.1, 11.6.2, 11.6.3, 11.6.4, 11.6.5, 11.6.6, 11.6.7, 11.6.8, 11.6.9, 11.7, 11.7.1, 11.7.2, 11.7.3, 11.7.4, 11.7.5, 11.7.6, 11.7.7, 11.7.8, 11.7.9, 11.8, 11.8.1, 11.8.2, 11.8.3, 11.8.4, 11.8.5, 11.8.6, 11.8.7, 11.8.8, 11.8.9, 11.9, 11.9.1, 11.9.2, 11.9.3, 11.9.4, 11.9.5, 11.9.6, 11.9.7, 11.9.8, 11.9.9, 11.10, 11.10.1, 11.10.2, 11.11, 11.11.1, 11.11.2, 11.11.3, 11.11.4, 11.11.5, 11.11.6, 11.11.7, 12, 12.0, 12.0.0-pre, 12.0.1, 12.0.2, 12.0.3, 12.0.4, 12.0.5, 12.0.6, 12.0.7, 12.0.8, 12.1, 12.1.1, 12.1.2, 12.1.3, 12.1.4, 12.1.5, 12.1.6, 12.1.7, 12.1.8, 12.1.9, 12.1.11, 12.1.12, 12.1.13, 12.2, 12.2.1, 12.2.2, 12.2.3, 12.2.4, 12.2.5, 12.2.6, 12.2.7, 12.3, 12.3.1, 12.3.2, 12.3.3, 12.3.4, 12.3.5, 12.3.6, 12.3.7, 12.3.8, 12.4, 12.4.1, 12.4.2, 12.4.3, 12.4.4, 12.4.5, 12.5, 12.5.1, 12.5.2, 12.5.3, 12.6, 12.6.1, 12.6.2, 12.6.3, 12.6.4, 12.6.5, 12.6.6, 12.7, 12.7.1, 12.7.2, 12.7.3, 12.7.4, 12.7.5, 12.7.6, 12.7.7, 12.7.8, 12.8, 12.8.1, 12.8.2, 12.8.3, 12.8.4, 12.8.5, 12.8.6, 12.8.7, 12.8.8, 12.9, 12.9.1, 12.9.2, 13, 13.0, 13.0.1, 13.0.2, 13.0.3, 13.0.4, 13.0.5, 13.1, 13.2, 13.3, 13.3.1, 13.3.2, 13.3.3, 13.3.4, 13.3.5, 13.3.6, 13.3.7, 13.3.8, 13.4, 13.4.1, 13.4.2, 13.4.3, 13.4.4, 13.4.5, 13.4.6, 13.4.7, 13.5, 13.5.1, 13.5.2, 13.5.3, 13.5.4, 13.5.5, 13.6, 13.6.1, 13.6.2, 13.6.3, 13.7, 13.7.1, 13.7.9, 13.8, 13.9, 13.10, 13.10.1, 13.10.2, 13.10.3, 13.10.4, 13.11, 13.11.1, 13.11.2, 13.11.3, 13.11.4, 13.11.5, 13.11.6, 13.12, 13.12.1, 13.12.2, 13.12.3, 13.12.4, 13.12.5, 13.12.6, 13.12.7, 13.12.8, 13.12.9, 14, 14.0, 14.0.1, 14.0.2, 14.0.3, 14.0.4, 14.0.5, 14.0.6, 14.0.7, 14.1, 14.1.1, 14.1.2, 14.2, 14.3, 14.3.1, 14.3.2, 14.3.3, 14.3.4, 14.3.5, 14.3.6, 14.4, 14.4.1, 14.4.2, 14.4.3, 14.4.4, 14.5, 14.5.1, 14.5.2, 14.5.3, 14.5.4, 14.6, 14.6.1, 14.6.2, 14.6.3, 14.6.4, 14.6.5, 14.7, 14.7.1, 14.7.2, 14.7.3, 14.7.4, 14.7.5, 14.7.6, 14.7.7, 14.8, 14.8.1, 14.8.2, 14.8.3, 14.8.4, 14.8.5, 14.9, 14.9.1, 14.9.2, 14.9.3, 14.9.4, 14.10, 14.10.1, 14.10.2, 14.10.3, 14.10.4, 15, 15.0, 15.0.1, 15.0.2, 15.0.3, 15.0.4, 15.1, 15.1.1, 15.1.2, 15.1.3, 15.1.4, 15.1.5, 15.2, 15.2.1, 15.2.2, 15.2.3, 15.2.4, 15.3, 15.3.1, 15.3.2, 15.3.3, 15.3.4, 15.4, 15.4.1, 15.4.2, 15.4.3, 15.4.4, 15.4.5, 15.5, 15.5.1, 15.5.2, 15.5.3, 15.5.4, 15.5.5, 15.5.6, 15.6, 15.6.1, 15.6.2, 15.6.3, 15.7, 15.7.1, 15.7.2, 15.7.3, 15.7.4, 15.7.5, 15.7.6, 15.7.7, 15.8, 15.8.1, 15.8.2, 15.8.3, 15.8.4, 15.9, 15.9.1, 15.9.2, 15.9.3, 15.10, 16, 16.0, 16.0.1, 16.0.2, 16.0.3, 16.0.4, 16.0.5, 16.0.6, 16.0.7, 16.1, 16.1.1, 16.1.2, 16.1.3, 16.1.4, 16.1.5, 16.2, 16.2.1, 16.2.2, 16.2.3, 16.2.4, 16.2.5, 16.2.6, 16.2.7, 16.2.8, 16.3, 16.3.1, 16.3.2, 16.3.3, 16.3.4, 16.3.5, 16.3.6, 16.4, 16.4.1, 16.4.2, 16.4.3, 16.4.4, 16.5, 16.5.1, 16.5.2, 16.5.3, 16.5.4, 16.5.5, 16.6, 16.6.1, 16.6.2, 16.6.3, 16.6.4, 16.6.5, 16.6.6, 16.7, 16.7.1, 16.7.2, 16.7.3, 16.7.4, 16.7.5, 16.8, 16.8.1, 16.8.2, 16.8.3, 16.8.4, 16.8.5, 16.9, 16.9.1, 16.9.2, 16.9.3, 16.9.4, 16.9.5, 16.9.6, 16.10, 16.10.1, 16.10.2, 16.10.3, 16.10.4, 16.11, 16.11.1

Link to Product Website: https://gitlab.com/

Typ oprogramowania: Bug Tracking Software

Opublikowano	Base	Temp	Słaby punkt	0day	Dzisiaj	Wyk	Prz	CTI	CVE
2024-05-09	5.0	4.9	GitLab Enterprise Edition cross site request forgery	$0-$5k	$0-$5k	Not Defined	Official Fix	0.15+	CVE-2024-4597
2024-05-09	4.3	4.2	GitLab Community Edition/Enterprise Edition API denial of service	$0-$5k	$0-$5k	Not Defined	Official Fix	0.19+	CVE-2024-4539
2024-05-09	6.5	6.3	GitLab Community Edition/Enterprise Edition Markdown denial of service	$0-$5k	$0-$5k	Not Defined	Official Fix	0.23+	CVE-2024-2651
2024-05-09	6.5	6.3	GitLab Community Edition/Enterprise Edition Pins Endpoint denial of service	$0-$5k	$0-$5k	Not Defined	Official Fix	0.19+	CVE-2024-2454
2024-05-09	6.5	6.3	GitLab Community Edition/Enterprise Edition Discord Integrations Chat Message HAndler denial of service	$0-$5k	$0-$5k	Not Defined	Official Fix	0.15+	CVE-2023-6682
2024-05-09	6.5	6.3	GitLab Community Edition/Enterprise Edition Google Chat Message denial of service	$0-$5k	$0-$5k	Not Defined	Official Fix	0.19+	CVE-2023-6688
2024-04-25	6.4	6.3	GitLab Community Edition/Enterprise Edition Bitbucket Credentials weak authentication	$0-$5k	$0-$5k	Not Defined	Official Fix	0.04	CVE-2024-4024
2024-04-25	4.3	4.2	GitLab Community Edition/Enterprise Edition GraphQL Subscription privilege escalation	$0-$5k	$0-$5k	Not Defined	Official Fix	0.04	CVE-2024-4006
2024-04-25	7.4	7.2	GitLab Community Edition/Enterprise Edition directory traversal	$0-$5k	$0-$5k	Not Defined	Official Fix	0.04	CVE-2024-2434
2024-04-25	4.3	4.2	GitLab Community Edition/Enterprise Edition Email Address privilege escalation	$0-$5k	$0-$5k	Not Defined	Official Fix	0.04	CVE-2024-1347
2024-04-25	7.5	7.3	GitLab Community Edition/Enterprise Edition Wildcard Filter denial of service	$0-$5k	$0-$5k	Not Defined	Official Fix	0.04	CVE-2024-2829
2024-04-12	4.3	4.2	GitLab Community Edition/Enterprise Edition Chat Integration denial of service	$0-$5k	$0-$5k	Not Defined	Official Fix	0.04	CVE-2023-6489
2024-04-12	6.1	6.0	GitLab Community Edition/Enterprise Edition Diff Viewer cross site scripting	$0-$5k	$0-$5k	Not Defined	Official Fix	0.08	CVE-2024-3092
2024-04-12	6.1	6.0	GitLab Community Edition/Enterprise Edition Autocomplete cross site scripting	$0-$5k	$0-$5k	Not Defined	Official Fix	0.04	CVE-2024-2279
2024-04-12	4.3	4.2	GitLab Enterprise Edition junit Test Report File denial of service	$0-$5k	$0-$5k	Not Defined	Official Fix	0.06	CVE-2023-6678
2024-03-28	6.1	6.0	GitLab Community Edition/Enterprise Edition Wiki Page cross site scripting	$0-$5k	$0-$5k	Not Defined	Official Fix	0.04	CVE-2023-6371
2024-03-28	4.3	4.2	GitLab Community Edition/Enterprise Edition Label denial of service	$0-$5k	$0-$5k	Not Defined	Official Fix	0.04	CVE-2024-2818
2024-02-22	6.1	6.0	GitLab Community Edition/Enterprise Edition User Profile Page cross site scripting	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2024-1451
2024-02-22	4.8	4.7	GitLab Community Edition/Enterprise Edition Secondary Email privilege escalation	$0-$5k	$0-$5k	Not Defined	Official Fix	0.03	CVE-2024-1525
2024-02-22	4.3	4.2	GitLab Enterprise Edition Custom Dashboard Projects Setting privilege escalation	$0-$5k	$0-$5k	Not Defined	Official Fix	0.05	CVE-2024-0861
2024-02-22	5.7	5.6	GitLab Enterprise Edition Group privilege escalation	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2023-6477
2024-02-22	4.3	4.2	GitLab Enterprise Edition Setting privilege escalation	$0-$5k	$0-$5k	Not Defined	Official Fix	0.05	CVE-2023-4895
2024-02-13	5.6	5.5	GitLab Enterprise Edition Group Access Token privilege escalation	$0-$5k	$0-$5k	Not Defined	Official Fix	0.04	CVE-2024-1250
2024-02-08	5.9	5.8	GitLab Enterprise Edition Protected Branch privilege escalation	$0-$5k	$0-$5k	Not Defined	Official Fix	0.04	CVE-2023-6564
2024-02-08	5.7	5.6	GitLab Enterprise Edition Protected Branch privilege escalation	$0-$5k	$0-$5k	Not Defined	Official Fix	0.02	CVE-2023-6840

714 więcej wpisów nie jest pokazywanych

🔒 Login Required

You need to signup and login to see more of the remaining 714 results.

więcej wpisów autorstwa Gitlab

◂ PoprzedniPrzeglądKolejny ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!

Gitlab Enterprise Luki w zabezpieczeniach

Oś czasu

Ostatni rok

Wersja

Przeciwdziałanie

Wykorzystywanie

Wektor dostępu

Uwierzytelnianie

Interakcja z użytkownikiem

C3BM Index

Ostatni rok

CVSSv3 Base

CVSSv3 Temp

VulDB

NVD

CNA

Sprzedawca

Research

Exploit 0-day

Wykorzystaj dzisiaj

Wykorzystaj wielkość rynku

Ostatni rok

🔴 CTI Zajęcia

🔒 Login Required

Do you want to use VulDB in your project?