Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2023-1417

Опубликовано: 05 апр. 2023
Источник: nvd
CVSS3: 4.3
EPSS Низкий

Описание

An issue has been discovered in GitLab affecting all versions starting from 15.9 before 15.9.4, all versions starting from 15.10 before 15.10.1. It was possible for an unauthorised user to add child epics linked to victim's epic in an unrelated group.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*
Версия от 15.9.0 (включая) до 15.9.4 (исключая)
cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*
Версия от 15.9.0 (включая) до 15.9.4 (исключая)
cpe:2.3:a:gitlab:gitlab:15.10.0:*:*:*:community:*:*:*
cpe:2.3:a:gitlab:gitlab:15.10.0:*:*:*:enterprise:*:*:*

EPSS

Процентиль: 62%
0.00422
Низкий

4.3 Medium

CVSS3

Дефекты

CWE-863
CWE-639

Связанные уязвимости

ubuntu логотип

CVE-2023-1417

CVSS3: 4.3
ubuntu
почти 3 года назад

An issue has been discovered in GitLab affecting all versions starting from 15.9 before 15.9.4, all versions starting from 15.10 before 15.10.1. It was possible for an unauthorised user to add child epics linked to victim's epic in an unrelated group.

debian логотип

CVE-2023-1417

CVSS3: 4.3
debian
почти 3 года назад

An issue has been discovered in GitLab affecting all versions starting ...

github логотип

GHSA-96cq-cj7w-27g2

CVSS3: 4.3
github
почти 3 года назад

An issue has been discovered in GitLab affecting all versions starting from 15.9 before 15.9.4, all versions starting from 15.10 before 15.10.1. It was possible for an unauthorised user to add child epics linked to victim's epic in an unrelated group.

EPSS

Процентиль: 62%
0.00422
Низкий

4.3 Medium

CVSS3

Дефекты

CWE-863
CWE-639