Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2023-3922

Опубликовано: 29 сент. 2023
Источник: nvd
CVSS3: 3
CVSS3: 7.1
EPSS Низкий

Описание

An issue has been discovered in GitLab affecting all versions starting from 8.15 before 16.2.8, all versions starting from 16.3 before 16.3.5, all versions starting from 16.4 before 16.4.1. It was possible to hijack some links and buttons on the GitLab UI to a malicious page.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*
Версия от 8.15 (включая) до 16.2.8 (исключая)
cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*
Версия от 8.15 (включая) до 16.2.8 (исключая)
cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*
Версия от 16.3.0 (включая) до 16.3.5 (исключая)
cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*
Версия от 16.3.0 (включая) до 16.3.5 (исключая)
cpe:2.3:a:gitlab:gitlab:16.4.0:*:*:*:community:*:*:*
cpe:2.3:a:gitlab:gitlab:16.4.0:*:*:*:enterprise:*:*:*

EPSS

Процентиль: 22%
0.00073
Низкий

3 Low

CVSS3

7.1 High

CVSS3

Дефекты

CWE-601
CWE-601

Связанные уязвимости

ubuntu логотип

CVE-2023-3922

CVSS3: 3
ubuntu
больше 2 лет назад

An issue has been discovered in GitLab affecting all versions starting from 8.15 before 16.2.8, all versions starting from 16.3 before 16.3.5, all versions starting from 16.4 before 16.4.1. It was possible to hijack some links and buttons on the GitLab UI to a malicious page.

debian логотип

CVE-2023-3922

CVSS3: 3
debian
больше 2 лет назад

An issue has been discovered in GitLab affecting all versions starting ...

github логотип

GHSA-5h2j-25xj-vggw

CVSS3: 3
github
больше 2 лет назад

An issue has been discovered in GitLab affecting all versions starting from 8.15 before 16.2.8, all versions starting from 16.3 before 16.3.5, all versions starting from 16.4 before 16.4.1. It was possible to hijack some links and buttons on the GitLab UI to a malicious page.

EPSS

Процентиль: 22%
0.00073
Низкий

3 Low

CVSS3

7.1 High

CVSS3

Дефекты

CWE-601
CWE-601