Gitlab

1,309 tracked vulnerabilities.

CVE-2024-8631 MEDIUM
GitLab EE - Privilege Escalation
Sep 12, 2024
CVSS 5.5
EPSS 0.00
CVE-2024-8124 HIGH
GitLab CE/EE <17.1.7-17.3.2 - DoS
Sep 12, 2024
CVSS 7.5
EPSS 0.05
CVE-2024-6446 LOW
GitLab <17.1.7-17.2.5-17.3.2 - CSRF
Sep 12, 2024
CVSS 3.5
EPSS 0.00
CVE-2024-6389 MEDIUM
GitLab-CE/EE <17.1.7, <17.2.5, <17.3.2 - Info Disclosure
Sep 12, 2024
CVSS 4.3
EPSS 0.00
CVE-2024-5435 MEDIUM
Gitlab < 17.1.7 - Error Information Exposure
Sep 12, 2024
CVSS 4.5
EPSS 0.00
CVE-2024-4660 MEDIUM
Gitlab < 17.1.7 - Missing Authorization
Sep 12, 2024
CVSS 6.5
EPSS 0.00
CVE-2024-4612 MEDIUM
Gitlab < 17.1.7 - Open Redirect
Sep 12, 2024
CVSS 6.4
EPSS 0.00
CVE-2024-2743 MEDIUM
Gitlab < 17.1.7 - Incorrect Authorization
Sep 12, 2024
CVSS 5.3
EPSS 0.00
CVE-2024-45409 CRITICALNUCLEI
Ruby-SAML <=1.16.0 - Auth Bypass
Sep 10, 2024
CVSS 10.0
EPSS 0.41
CVE-2024-8041 MEDIUM
GitLab CE/EE <17.1.6-17.3.1 - DoS
Aug 22, 2024
CVSS 6.5
EPSS 0.01
CVE-2024-7110 MEDIUM
Gitlab < 17.1.6 - Command Injection
Aug 22, 2024
CVSS 6.4
EPSS 0.00
CVE-2024-6502 MEDIUM
GitLab CE/EE <17.1.6-17.2.4-17.3.1 - Info Disclosure
Aug 22, 2024
CVSS 5.7
EPSS 0.00
CVE-2024-3127 MEDIUM
GitLab EE <17.1.6-17.2.4-17.3.1 - Auth Bypass
Aug 22, 2024
CVSS 4.3
EPSS 0.00
CVE-2024-7610 MEDIUM
Gitlab < 17.0.6 - Denial of Service
Aug 08, 2024
CVSS 4.3
EPSS 0.00
CVE-2024-7554 MEDIUM
Gitlab < 17.0.6 - Information Disclosure
Aug 08, 2024
CVSS 4.9
EPSS 0.00
CVE-2024-5423 MEDIUM
Gitlab < 17.0.6 - Denial of Service
Aug 08, 2024
CVSS 6.5
EPSS 0.00
CVE-2024-4207 MEDIUM
GitLab <17.0.6-17.1.4-17.2.2 - XSS
Aug 08, 2024
CVSS 4.4
EPSS 0.01
CVE-2024-3958 MEDIUM
Gitlab < 17.0.6 - Code Injection
Aug 08, 2024
CVSS 5.3
EPSS 0.00
CVE-2024-3114 MEDIUM
GitLab CE/EE <17.0.6-17.2.2 - DoS
Aug 08, 2024
CVSS 4.3
EPSS 0.00
CVE-2024-3035 MEDIUM
Gitlab < 17.0.6 - IDOR
Aug 08, 2024
CVSS 6.8
EPSS 0.00
CVE-2024-2800 MEDIUM
Gitlab < 17.0.6 - Denial of Service
Aug 08, 2024
CVSS 6.5
EPSS 0.00
CVE-2024-6329 MEDIUM
GitLab CE/EE <17.0.6-17.2.2 - Info Disclosure
Aug 08, 2024
CVSS 5.7
EPSS 0.00
CVE-2024-4784 MEDIUM
GitLab EE <17.0.6-17.2.2 - Auth Bypass
Aug 08, 2024
CVSS 4.2
EPSS 0.00
CVE-2024-4210 MEDIUM
GitLab CE/EE <17.0.6-17.2.2 - DoS
Aug 08, 2024
CVSS 6.5
EPSS 0.00
CVE-2024-7057 MEDIUM
Gitlab < 17.0.5 - Improper Access Control
Jul 25, 2024
CVSS 4.3
EPSS 0.00
Products
gitlab 1,295 gitlab-shell 5 dynamic_application_security_testing_analyzer 4 runner 3 gitlab-vscode-extension 2 gitlab_runner 1 gitaly 1 language_server 1 omnibus 1 dast_api_scanner 1
Quick Filters
Critical CVEs With Exploits In CISA KEV