CVE-2021-39867

Опубликовано: 05 окт. 2021

Источник: debian

EPSS Низкий

Описание

In all versions of GitLab CE/EE since version 8.15, a DNS rebinding vulnerability in Gitea Importer may be exploited by an attacker to trigger Server Side Request Forgery (SSRF) attacks.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
gitlab	fixed	15.10.8+ds1-2		package

EPSS

Процентиль: 36%

0.00145

Низкий

Связанные уязвимости

CVE-2021-39867

CVSS3: 6.5

ubuntu

почти 4 года назад

In all versions of GitLab CE/EE since version 8.15, a DNS rebinding vulnerability in Gitea Importer may be exploited by an attacker to trigger Server Side Request Forgery (SSRF) attacks.

CVE-2021-39867

CVSS3: 6.5

nvd

почти 4 года назад

In all versions of GitLab CE/EE since version 8.15, a DNS rebinding vulnerability in Gitea Importer may be exploited by an attacker to trigger Server Side Request Forgery (SSRF) attacks.

GHSA-237m-vv9j-66q2

github

около 3 лет назад

In all versions of GitLab CE/EE since version 8.15, a DNS rebinding vulnerability in Gitea Importer may be exploited by an attacker to trigger Server Side Request Forgery (SSRF) attacks.

EPSS

Процентиль: 36%

0.00145

Низкий