Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2023-3511

Опубликовано: 15 дек. 2023
Источник: nvd
CVSS3: 2
CVSS3: 3.5
EPSS Низкий

Описание

An issue has been discovered in GitLab EE affecting all versions starting from 8.17 before 16.4.4, all versions starting from 16.5 before 16.5.4, all versions starting from 16.6 before 16.6.2. It was possible for auditor users to fork and submit merge requests to private projects they're not a member of.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*
Версия от 8.17 (включая) до 16.4.4 (исключая)
cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*
Версия от 16.5 (включая) до 16.5.4 (исключая)
cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*
Версия от 16.6 (включая) до 16.6.2 (исключая)

EPSS

Процентиль: 5%
0.00021
Низкий

2 Low

CVSS3

3.5 Low

CVSS3

Дефекты

CWE-863
NVD-CWE-Other

Связанные уязвимости

ubuntu логотип

CVE-2023-3511

CVSS3: 2
ubuntu
около 2 лет назад

An issue has been discovered in GitLab EE affecting all versions starting from 8.17 before 16.4.4, all versions starting from 16.5 before 16.5.4, all versions starting from 16.6 before 16.6.2. It was possible for auditor users to fork and submit merge requests to private projects they're not a member of.

debian логотип

CVE-2023-3511

CVSS3: 2
debian
около 2 лет назад

An issue has been discovered in GitLab EE affecting all versions start ...

github логотип

GHSA-ghrj-rqcw-5xqp

CVSS3: 2
github
около 2 лет назад

An issue has been discovered in GitLab EE affecting all versions starting from 8.17 before 16.4.4, all versions starting from 16.5 before 16.5.4, all versions starting from 16.6 before 16.6.2. It was possible for auditor users to fork and submit merge requests to private projects they're not a member of.

EPSS

Процентиль: 5%
0.00021
Низкий

2 Low

CVSS3

3.5 Low

CVSS3

Дефекты

CWE-863
NVD-CWE-Other