Gitlab
1,309 tracked vulnerabilities.
CVE-2023-6371
HIGH
GitLab CE/EE <16.8.5-16.9.3-16.10.1 - XSS
Mar 28, 2024
CVSS 8.7
EPSS 0.00
CVE-2024-1299
MEDIUM
GitLab <16.8.4, <16.9.2 - Privilege Escalation
Mar 07, 2024
CVSS 6.5
EPSS 0.00
CVE-2024-0199
HIGH
Gitlab < 16.7.7 - Incorrect Authorization
Mar 07, 2024
CVSS 7.7
EPSS 0.00
CVE-2023-4895
MEDIUM
GitLab EE - Auth Bypass
Feb 22, 2024
CVSS 4.3
EPSS 0.00
CVE-2024-1525
MEDIUM
GitLab CE/EE <16.7.6-16.8.3-16.9.1 - Auth Bypass
Feb 22, 2024
CVSS 5.3
EPSS 0.00
CVE-2024-1451
HIGH
Gitlab - XSS
Feb 22, 2024
CVSS 8.7
EPSS 0.29
CVE-2024-0861
MEDIUM
GitLab EE <16.7.6-16.9.1 - Privilege Escalation
Feb 22, 2024
CVSS 4.3
EPSS 0.00
CVE-2024-0410
HIGH
GitLab <16.7.6-16.9.1 - Auth Bypass
Feb 22, 2024
CVSS 7.7
EPSS 0.00
CVE-2023-6477
MEDIUM
GitLab EE <16.7.6-16.8.3-16.9.1 - Privilege Escalation
Feb 22, 2024
CVSS 6.7
EPSS 0.00
CVE-2023-3509
LOW
GitLab <16.7.6, <16.8.3, <16.9.1 - Info Disclosure
Feb 21, 2024
CVSS 3.7
EPSS 0.00
CVE-2024-1250
MEDIUM
Gitlab < 16.8.2 - Privilege Escalation
Feb 12, 2024
CVSS 6.5
EPSS 0.00
CVE-2023-6564
MEDIUM
GitLab EE Premium/Ultimate <16.4.3-16.6.1 - Privilege Escalation
Feb 08, 2024
CVSS 6.5
EPSS 0.00
CVE-2024-1066
MEDIUM
Gitlab < 16.6.7 - Resource Allocation Without Limits
Feb 07, 2024
CVSS 6.5
EPSS 0.00
CVE-2023-6840
MEDIUM
Gitlab < 16.6.7 - Missing Authorization
Feb 07, 2024
CVSS 6.7
EPSS 0.00
CVE-2023-6736
MEDIUM
Gitlab < 16.7.6 - Denial of Service
Feb 07, 2024
CVSS 6.5
EPSS 0.00
CVE-2023-6159
MEDIUM
GitLab CE/EE <16.6.6-16.8.1 - DoS
Jan 26, 2024
CVSS 6.5
EPSS 0.00
CVE-2023-5612
MEDIUM
Gitlab < 16.6.6 - Missing Authorization
Jan 26, 2024
CVSS 5.3
EPSS 0.26
CVE-2024-0456
MEDIUM
GitLab <14.0-16.8.1 - Auth Bypass
Jan 26, 2024
CVSS 4.3
EPSS 0.00
CVE-2024-0402
CRITICAL
Gitlab < 16.5.8 - Path Traversal
Jan 26, 2024
CVSS 9.9
EPSS 0.41
CVE-2023-5933
MEDIUM
Gitlab < 16.6.6 - Basic XSS
Jan 26, 2024
CVSS 6.4
EPSS 0.04
CVE-2023-7028
CRITICALKEVNUCLEI
GitLab Password Reset Account Takeover
Jan 12, 2024
CVSS 10.0
EPSS 0.93
CVE-2023-6955
MEDIUM
Gitlab < 16.5.6 - Missing Authorization
Jan 12, 2024
CVSS 6.6
EPSS 0.00
CVE-2023-5356
HIGH
Gitlab < 16.5.6 - Incorrect Authorization
Jan 12, 2024
CVSS 7.3
EPSS 0.00
CVE-2023-4812
HIGH
GitLab EE <16.5.6-16.7.2 - Auth Bypass
Jan 12, 2024
CVSS 7.6
EPSS 0.00
CVE-2023-2030
LOW
Gitlab < 16.5.6 - Signature Verification Bypass
Jan 12, 2024
CVSS 3.5
EPSS 0.00