Описание
A crafted tag in the Jupyter Notebook viewer in GitLab EE/CE affecting all versions before 15.1.6, 15.2 to 15.2.4, and 15.3 to 15.3.2 allows an attacker to issue arbitrary HTTP requests
Ссылки
- Third Party Advisory
- Third Party Advisory
- Permissions RequiredThird Party Advisory
- Third Party Advisory
- Third Party Advisory
- Permissions RequiredThird Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Одно из
EPSS
6.4 Medium
CVSS3
7.3 High
CVSS3
Дефекты
Связанные уязвимости
A crafted tag in the Jupyter Notebook viewer in GitLab EE/CE affecting all versions before 15.1.6, 15.2 to 15.2.4, and 15.3 to 15.3.2 allows an attacker to issue arbitrary HTTP requests
A crafted tag in the Jupyter Notebook viewer in GitLab EE/CE affecting ...
A crafted tag in the Jupyter Notebook viewer in GitLab EE/CE affecting all versions before 15.1.6, 15.2 to 15.2.4, and 15.3 to 15.3.2 allows an attacker to issue arbitrary HTTP requests
Уязвимость компонента ipynb Notebook программной платформы на базе git для совместной работы над кодом GitLab, позволяющая нарушителю отправлять произвольные HTTP-запросы
EPSS
6.4 Medium
CVSS3
7.3 High
CVSS3