GHSA-rfc5-457g-gpqm

Опубликовано: 03 апр. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.6

Описание

A DNS rebinding vulnerability in the Irker IRC Gateway integration in all versions of GitLab CE/EE since version 7.9 allows an attacker to trigger Server Side Request Forgery (SSRF) attacks.

Ссылки

EPSS

Процентиль: 37%

0.00151

Низкий

7.6 High

CVSS3

CVE ID

CVE-2022-0425

Дефекты

CWE-918

Связанные уязвимости

CVE-2022-0425

CVSS3: 5.4

ubuntu

около 3 лет назад

A DNS rebinding vulnerability in the Irker IRC Gateway integration in all versions of GitLab CE/EE since version 7.9 allows an attacker to trigger Server Side Request Forgery (SSRF) attacks.

CVE-2022-0425

CVSS3: 5.4

nvd

около 3 лет назад

A DNS rebinding vulnerability in the Irker IRC Gateway integration in all versions of GitLab CE/EE since version 7.9 allows an attacker to trigger Server Side Request Forgery (SSRF) attacks.

EPSS

Процентиль: 37%

0.00151

Низкий

7.6 High

CVSS3

CVE ID

CVE-2022-0425

Дефекты

CWE-918