CVE-2022-2992

CRITICAL LAB

GitLab GitHub Repo Import Deserialization RCE

Title source: metasploit

Description

A vulnerability in GitLab CE/EE affecting all versions from 11.10 prior to 15.1.6, 15.2 to 15.2.4, 15.3 to 15.3.2 allows an authenticated user to achieve remote code execution via the Import from GitHub API endpoint.

Exploits (3)

nomisec WORKING POC 225 stars

by CsEnox · poc

https://github.com/CsEnox/CVE-2022-2992

View Code ZIP pw:eip

nomisec WORKING POC 8 stars

by Malwareman007 · poc

https://github.com/Malwareman007/CVE-2022-2992

View Code ZIP pw:eip

metasploit WORKING POC EXCELLENT

by William Bowling (vakzz), Heyder Andrade <https://infosec.exchange/@heyder>, RedWay Security <https://infosec.exchange/@redway> · rubypocunix

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/http/gitlab_github_import_rce_cve_2022_2992.rb

View Code ZIP pw:eip

References (4)

[Third Party Advisory] https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-2992.json

[Broken Link, Third Party Advisory] https://gitlab.com/gitlab-org/gitlab/-/issues/371884

[Permissions Required, Third Party Advisory] https://hackerone.com/reports/1679624

[Exploit, Third Party Advisory] http://packetstormsecurity.com/files/171008/GitLab-GitHub-Repo-Import-Deserialization-Remote-Code-Execution.html

Scores

CVSS v3 9.9

EPSS 0.9371

EPSS Percentile 99.9%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Lab Environment

COMMUNITY

Community Lab

docker pull gitlab/gitlab-ee:15.3.1-ee.0

https://github.com/CsEnox/CVE-2022-2992

https://github.com/Malwareman007/CVE-2022-2992

https://github.com/rapid7/metasploit-framework

View in Library

Details

CWE

CWE-74

Status published

Products (1)

gitlab/gitlab 11.10 - 15.1.6 (2 CPE variants)

Published Oct 17, 2022

Tracked Since Feb 18, 2026