CVE-2021-39906

Опубликовано: 05 нояб. 2021

Источник: debian

EPSS Низкий

Описание

Improper validation of ipynb files in GitLab CE/EE version 13.5 and above allows an attacker to execute arbitrary JavaScript code on the victim's behalf.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
gitlab	fixed	15.10.8+ds1-2		package

EPSS

Процентиль: 78%

0.01183

Низкий

Связанные уязвимости

CVE-2021-39906

CVSS3: 8.7

ubuntu

больше 4 лет назад

Improper validation of ipynb files in GitLab CE/EE version 13.5 and above allows an attacker to execute arbitrary JavaScript code on the victim's behalf.

CVE-2021-39906

CVSS3: 8.7

nvd

больше 4 лет назад

Improper validation of ipynb files in GitLab CE/EE version 13.5 and above allows an attacker to execute arbitrary JavaScript code on the victim's behalf.

GHSA-6cxq-rcp9-rqr8

github

больше 3 лет назад

Improper validation of ipynb files in GitLab CE/EE version 13.5 and above allows an attacker to execute arbitrary JavaScript code on the victim's behalf.

EPSS

Процентиль: 78%

0.01183

Низкий