CVE-2023-5612

MEDIUM

Gitlab < 16.6.6 - Missing Authorization

Title source: rule

Description

An issue has been discovered in GitLab affecting all versions before 16.6.6, 16.7 prior to 16.7.4, and 16.8 prior to 16.8.1. It was possible to read the user email address via tags feed although the visibility in the user profile has been disabled.

Exploits (3)

nomisec WRITEUP

by mad3E7cat · poc

https://github.com/mad3E7cat/CVE-2023-5612

View Code ZIP pw:eip

nomisec WRITEUP

by TopskiyPavelQwertyGang · poc

https://github.com/TopskiyPavelQwertyGang/Review.CVE-2023-5612

View Code ZIP pw:eip

metasploit WORKING POC

by n00bhaxor, erruquill · rubypoc

https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/gather/gitlab_tags_rss_feed_email_disclosure.rb

View Code ZIP pw:eip

References (3)

[Vendor Advisory] https://about.gitlab.com/releases/2024/01/25/critical-security-release-gitlab-16-8-1-released/

[Broken Link] https://gitlab.com/gitlab-org/gitlab/-/issues/428441

[Permissions Required] https://hackerone.com/reports/2208790

Scores

CVSS v3 5.3

EPSS 0.2562

EPSS Percentile 96.1%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Classification

CWE

CWE-862

Status published

Affected Products (4)

gitlab/gitlab < 16.6.6

gitlab/gitlab

Timeline

Published Jan 26, 2024

Tracked Since Feb 18, 2026