Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2024-8266

Опубликовано: 13 фев. 2025
Источник: nvd
CVSS3: 4.4
CVSS3: 6.6
EPSS Низкий

Описание

An issue was discovered in GitLab CE/EE affecting all versions starting from 17.1 prior to 17.6.0, which allows an attacker with maintainer role to trigger a pipeline as project owner under certain circumstances.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*
Версия от 17.1.0 (включая) до 17.6.0 (исключая)
cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*
Версия от 17.1.0 (включая) до 17.6.0 (исключая)

EPSS

Процентиль: 3%
0.0002
Низкий

4.4 Medium

CVSS3

6.6 Medium

CVSS3

Дефекты

CWE-250
NVD-CWE-noinfo

Связанные уязвимости

ubuntu логотип

CVE-2024-8266

CVSS3: 4.4
ubuntu
6 месяцев назад

An issue was discovered in GitLab CE/EE affecting all versions starting from 17.1 prior to 17.6.0, which allows an attacker with maintainer role to trigger a pipeline as project owner under certain circumstances.

debian логотип

CVE-2024-8266

CVSS3: 4.4
debian
6 месяцев назад

An issue was discovered in GitLab CE/EE affecting all versions startin ...

github логотип

GHSA-qfrc-4c6q-334p

CVSS3: 4.4
github
6 месяцев назад

An issue was discovered in GitLab CE/EE affecting all versions starting from 17.1 prior to 17.6.0, which allows an attacker with maintainer role to trigger a pipeline as project owner under certain circumstances.

EPSS

Процентиль: 3%
0.0002
Низкий

4.4 Medium

CVSS3

6.6 Medium

CVSS3

Дефекты

CWE-250
NVD-CWE-noinfo