[go: up one dir, main page]
More Web Proxy on the site http://driver.im/

Gitlab Vulnerabilità

Sequenza temporale

Genere

Bug Tracking Software880

Prodotto

GitLab Enterprise Edition822
GitLab Community Edition663
GitLab Community19
GitLab Enterprise19
GitLab DAST Analyzer3

Contromisure

Official Fix615
Temporary Fix0
Workaround0
Unavailable0
Not Defined265

Sfruttabilità

High4
Functional0
Proof-of-Concept4
Unproven0
Not Defined872

Accesso al vettore

Not Defined0
Physical0
Local12
Adjacent12
Network856

Autenticazione

Not Defined0
High79
Low460
None341

Interazione dell'utente

Not Defined0
Required182
None698

C3BM Index

CVSSv3 Base

≤10
≤21
≤311
≤486
≤5221
≤6269
≤7188
≤862
≤939
≤103

CVSSv3 Temp

≤10
≤21
≤319
≤480
≤5226
≤6275
≤7178
≤867
≤933
≤101

VulDB

≤10
≤26
≤353
≤4126
≤5280
≤6178
≤7121
≤8112
≤94
≤100

NVD

≤10
≤20
≤36
≤413
≤5106
≤6144
≤7141
≤8117
≤937
≤1037

CNA

≤10
≤22
≤322
≤448
≤5118
≤674
≤784
≤832
≤930
≤1016

Fornitore

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploiter 0 giorni

<1k182
<2k486
<5k211
<10k0
<25k1
<50k0
<100k0
≥100k0

Exploiter aujourd'hui

<1k876
<2k4
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

Sfrutta il volume del mercato

🔴 CTI Attività

Affected Products (13): Community (19), Community Edition (663), DAST API Scanner (1), DAST Analyzer (3), Enterprise (19), Enterprise Edition (824), GitLab (1), Omnibus (1), Remote Development (1), Runner (3), and Enterprise Edition (1), and gitlab-shell (1), gitlab-vscode-extension (1)

Link to Vendor Website: https://gitlab.com/

Data di pubblicazioneBaseTempVulnerabilitàProdSfrConEPSSCTICVE
31/01/20255.35.2GitLab Community Edition/Enterprise Edition cross site request forgeryBug Tracking SoftwareNot DefinedOfficial Fix0.000430.38CVE-2024-1211
31/01/20252.92.8GitLab Community Edition/Enterprise Edition escalazione di privilegiBug Tracking SoftwareNot DefinedOfficial Fix0.000430.05CVE-2023-6195
28/01/20254.34.2GitLab Community Edition/Enterprise Edition Background Job denial of serviceBug Tracking SoftwareNot DefinedOfficial Fix0.000430.07CVE-2025-0290
24/01/20256.16.0GitLab Community Edition/Enterprise Edition cross site scriptingBug Tracking SoftwareNot DefinedOfficial Fix0.000430.15CVE-2025-0314
24/01/20256.36.2GitLab Community Edition/Enterprise Edition Privilege EscalationBug Tracking SoftwareNot DefinedOfficial Fix0.000430.06CVE-2024-11931
09/01/20254.64.5GitLab Community Edition/Enterprise Edition Privilege EscalationBug Tracking SoftwareNot DefinedOfficial Fix0.000430.00CVE-2024-13041
09/01/20254.34.2GitLab Community Edition/Enterprise Edition denial of serviceBug Tracking SoftwareNot DefinedOfficial Fix0.000450.00CVE-2024-6324
08/01/20254.34.2GitLab Community Edition/Enterprise Edition Public Project escalazione di privilegiBug Tracking SoftwareNot DefinedOfficial Fix0.000450.06CVE-2024-12431
08/01/20254.64.5GitLab Community Edition/Enterprise Edition API Request rivelazione di un 'informazioneBug Tracking SoftwareNot DefinedOfficial Fix0.000430.03CVE-2025-0194
25/12/20243.73.6GitLab Community Edition/Enterprise Edition rivelazione di un 'informazioneBug Tracking SoftwareNot DefinedOfficial Fix0.000430.00CVE-2023-5117
16/12/20245.35.2GitLab Community Edition/Enterprise Edition Public Project escalazione di privilegiBug Tracking SoftwareNot DefinedOfficial Fix0.000430.03CVE-2024-8650
16/12/20245.35.2GitLab Community Edition/Enterprise Edition GraphQL Query escalazione di privilegiBug Tracking SoftwareNot DefinedOfficial Fix0.000430.05CVE-2024-8116
12/12/20244.44.4GitLab Community Edition/Enterprise Edition cross site scriptingBug Tracking SoftwareNot DefinedOfficial Fix0.000430.03CVE-2024-8179
12/12/20244.54.4GitLab Community Edition/Enterprise Edition API Endpoint RedirectBug Tracking SoftwareNot DefinedOfficial Fix0.000610.05CVE-2024-9387
12/12/20244.34.2GitLab Community Edition/Enterprise Edition denial of serviceBug Tracking SoftwareNot DefinedOfficial Fix0.000430.06CVE-2024-9367
12/12/20246.16.0GitLab Community Edition/Enterprise Edition NEL Header RedirectBug Tracking SoftwareNot DefinedOfficial Fix0.000610.05CVE-2024-11274
12/12/20243.13.0GitLab Enterprise Edition Wiki History Diff escalazione di privilegiBug Tracking SoftwareNot DefinedOfficial Fix0.000430.03CVE-2024-10043
12/12/20244.94.8GitLab Community Edition/Enterprise Edition Session Token rivelazione di un 'informazioneBug Tracking SoftwareNot DefinedOfficial Fix0.000430.03CVE-2024-12570
12/12/20243.63.6GitLab Community Edition/Enterprise Edition GraphQL Mutation rivelazione di un 'informazioneBug Tracking SoftwareNot DefinedOfficial Fix0.000430.03CVE-2024-12292
12/12/20246.46.3GitLab Community Edition/Enterprise Edition Merge Request denial of serviceBug Tracking SoftwareNot DefinedOfficial Fix0.000430.05CVE-2024-8233
27/11/20245.35.2GitLab Enterprise Edition Private Project rivelazione di un 'informazioneBug Tracking SoftwareNot DefinedOfficial Fix0.000460.09CVE-2024-10240
27/11/20245.45.3GitLab Community Edition/Enterprise Edition cargo.toml File denial of serviceBug Tracking SoftwareNot DefinedOfficial Fix0.000460.03CVE-2024-8237
27/11/20244.24.1GitLab Community Edition/Enterprise Edition Harbor Registry denial of serviceBug Tracking SoftwareNot DefinedOfficial Fix0.000460.03CVE-2024-8177
27/11/20246.66.5GitLab Community Edition/Enterprise Edition Personal Access Token escalazione di privilegiBug Tracking SoftwareNot DefinedOfficial Fix0.000680.03CVE-2024-8114
27/11/20243.63.6GitLab Community Edition/Enterprise Edition Streaming Result autenticazione deboleBug Tracking SoftwareNot DefinedOfficial Fix0.000460.04CVE-2024-11668

855 non vengono visualizzate più voci

🔒 Login Required

You need to signup and login to see more of the remaining 855 results.

PrecedenteVisione D'insiemeIl prossimo

Do you want to use VulDB in your project?

Use the official API to access entries easily!