Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2024-4099

Опубликовано: 26 сент. 2024
Источник: debian
EPSS Низкий

Описание

An issue has been discovered in GitLab EE affecting all versions starting from 16.0 prior to 17.2.8, from 17.3 prior to 17.3.4, and from 17.4 prior to 17.4.1. An AI feature was found to read unsanitized content in a way that could have allowed an attacker to hide prompt injection.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
gitlabnot-affectedpackage

EPSS

Процентиль: 14%
0.00047
Низкий

Связанные уязвимости

CVSS3: 3.1
nvd
11 месяцев назад

An issue has been discovered in GitLab EE affecting all versions starting from 16.0 prior to 17.2.8, from 17.3 prior to 17.3.4, and from 17.4 prior to 17.4.1. An AI feature was found to read unsanitized content in a way that could have allowed an attacker to hide prompt injection.

CVSS3: 3.1
github
11 месяцев назад

An issue has been discovered in GitLab EE affecting all versions starting from 16.0 prior to 17.2.8, from 17.3 prior to 17.3.4, and from 17.4 prior to 17.4.1. An AI feature was found to read unsanitized content in a way that could have allowed an attacker to hide prompt injection.

CVSS3: 5.3
fstec
11 месяцев назад

Уязвимость функция AI программной платформы на базе git для совместной работы над кодом GitLab, позволяющая нарушителю оказать воздействие на целостность данных

EPSS

Процентиль: 14%
0.00047
Низкий