CVE-2022-2185

CRITICAL NUCLEI

GitLab <14.10.5-15.1.1 - Authenticated RCE

Title source: llm

Description

A critical issue has been discovered in GitLab affecting all versions starting from 14.0 prior to 14.10.5, 15.0 prior to 15.0.4, and 15.1 prior to 15.1.1 where an authenticated user authorized to import projects could import a maliciously crafted project leading to remote code execution.

Exploits (3)

nomisec WORKING POC 81 stars

by ESUAdmin · poc

https://github.com/ESUAdmin/CVE-2022-2185

View Code ZIP pw:eip

github 34 stars

by DarkFunct · cpoc

https://github.com/DarkFunct/CVE_Exploits/tree/main/CVE-2022-2185

nomisec STUB 13 stars

by safe3s · poc

https://github.com/safe3s/CVE-2022-2185-poc

View Code ZIP pw:eip

Nuclei Templates (1)

GitLab CE/EE - Remote Code Execution

HIGHby GitLab Red Team

Shodan: http.title:"GitLab" || cpe:"cpe:2.3:a:gitlab:gitlab" || http.title:"gitlab"

FOFA: title="gitlab"

References (3)

[Vendor Advisory] https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-2185.json

[Broken Link] https://gitlab.com/gitlab-org/gitlab/-/issues/366088

[Permissions Required, Third Party Advisory] https://hackerone.com/reports/1609965

Scores

CVSS v3 9.9

EPSS 0.9001

EPSS Percentile 99.6%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Classification

CWE

CWE-78

Status published

Affected Products (4)

gitlab/gitlab < 14.10.5

gitlab/gitlab < 14.10.5

gitlab/gitlab

gitlab/gitlab

Timeline

Published Jul 01, 2022

Tracked Since Feb 18, 2026