gitlab

1,423 tracked vulnerabilities.

CVE-2023-2001 MEDIUM
GitLab < 15.10.8, 15.11 < 15.11.7, 16.0 < 16.0.2 - Authentication Bypass by Spoofing via Protected Tag
Jun 07, 2023
CVSS 4.3
EPSS 0.01
CVE-2023-1825 LOW
GitLab EE <15.10.8/<15.11.7/<16.0.2 - Info Disclosure
Jun 07, 2023
CVSS 3.1
EPSS 0.01
CVE-2023-0508 LOW
GitLab 15.4.0-15.10.7, 15.11.0-15.11.6, 16.0.0-16.0.1 - HTTP Response Splitting via NPM Package API
Jun 07, 2023
CVSS 3.1
EPSS 0.01
CVE-2023-0121 MEDIUM
GitLab CE/EE <15.10.8/<16.0.2 - DoS
Jun 07, 2023
CVSS 6.5
EPSS 0.01
CVE-2023-2442 HIGH
GitLab 15.11.0-15.11.6 and 16.0.0-16.0.1 - Stored Cross-Site Scripting via Merge Request
Jun 07, 2023
CVSS 8.7
EPSS 0.96
CVE-2023-1621 MEDIUM
GitLab EE <15.10.5-15.11.1 - Privilege Escalation
Jun 06, 2023
CVSS 6.5
EPSS 0.01
CVE-2023-2132 HIGH
GitLab CE/EE <15.10.8/<15.11.7/<16.0.2 - DoS
Jun 06, 2023
CVSS 7.5
EPSS 0.01
CVE-2023-0921 MEDIUM
GitLab 8.3-15.10.7, 15.11-15.11.6, 16.0-16.0.1 - Authenticated Denial of Service via Large Issue Description
Jun 06, 2023
CVSS 4.3
EPSS 0.84
CVE-2023-2825 CRITICAL NUCLEI
GitLab Authenticated File Read
May 26, 2023
CVSS 10.0
EPSS 0.72
CVE-2023-2181 MEDIUM
GitLab <15.9.8-15.10.7-15.11.3 - Info Disclosure
May 12, 2023
CVSS 6.3
EPSS 0.01
CVE-2023-2478 CRITICAL
GitLab 15.4-15.9.6, 15.10-15.10.5, 15.11-15.11.1 - Unauthorized Runner Attachment via GraphQL Endpoint
May 08, 2023
CVSS 9.6
EPSS 0.05
CVE-2023-2182 MEDIUM
GitLab EE <15.10.5-15.11.1 - Privilege Escalation
May 03, 2023
CVSS 6.8
EPSS 0.01
CVE-2023-1178 MEDIUM
GitLab 8.6-15.9.5, 15.10-15.10.4, 15.11 - File Integrity Compromise via Tag or Release Reference
May 03, 2023
CVSS 5.7
EPSS 0.01
CVE-2023-0805 MEDIUM
GitLab 15.2-15.9.5, 15.10-15.10.4, 15.11 - Missing Authorization for Banned Group Members
May 03, 2023
CVSS 4.9
EPSS 0.01
CVE-2023-0756 MEDIUM
GitLab <15.9.6, <15.10.5, <15.11.1 - RCE
May 03, 2023
CVSS 4.8
EPSS 0.01
CVE-2023-2069 MEDIUM
GitLab 10.0-12.9.7, 12.10-12.10.6, 13.0 - Authenticated CI/CD Variable Exposure via Project Import
May 03, 2023
CVSS 6.4
EPSS 0.01
CVE-2023-1965 MEDIUM
GitLab EE <15.9.6, <15.10.5, <15.11.1 - Open Redirect
May 03, 2023
CVSS 6.8
EPSS 0.00
CVE-2023-1836 MEDIUM
GitLab <15.9.6-15.10.5-15.11.1 - XSS
May 03, 2023
CVSS 4.4
EPSS 0.01
CVE-2023-1265 MEDIUM
GitLab <15.9.6-15.11.1 - Info Disclosure
May 03, 2023
CVSS 5.4
EPSS 0.01
CVE-2023-1204 MEDIUM
GitLab 10.1-15.10.7, 15.11-15.11.6, 16.0-16.0.1 - Cryptographic Signature Verification Bypass
May 03, 2023
CVSS 4.3
EPSS 0.01
CVE-2023-0485 MEDIUM
GitLab 13.11-15.8.4, 15.9-15.9.3, 15.10 - Unauthorized Project Update Access via Fork Diff
May 03, 2023
CVSS 6.5
EPSS 0.01
CVE-2023-0155 MEDIUM
GitLab CE/EE <15.8.5-15.10.1 - Open Redirect
May 03, 2023
CVSS 5.4
EPSS 0.01
CVE-2023-1787 MEDIUM
GitLab <15.9.4-15.10.1 - Info Disclosure
Apr 05, 2023
CVSS 4.3
EPSS 0.01
CVE-2023-1710 MEDIUM
GitLab <15.8.5, <15.9.4, <15.10.1 - Info Disclosure
Apr 05, 2023
CVSS 5.3
EPSS 0.01
CVE-2023-1708 MEDIUM
GitLab CE/EE <15.8.5-15.10.1 - Code Injection
Apr 05, 2023
CVSS 5.7
EPSS 0.01