Опубликовано: 28 мар. 2022
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 5.5
CVSS3: 5.4
Описание
A vulnerability was discovered in GitLab versions 10.5 to 14.5.4, 14.6 to 14.6.4, and 14.7 to 14.7.1. GitLab was vulnerable to a blind SSRF attack through the Project Import feature.
| Релиз | Статус | Примечание |
|---|---|---|
| esm-apps/xenial | ignored | not maintainable |
| trusty | ignored | end of standard support |
| upstream | needs-triage | |
| xenial | ignored | end of standard support |
Показывать по
10
EPSS
Процентиль: 42%
0.00198
Низкий
5.5 Medium
CVSS2
5.4 Medium
CVSS3
Связанные уязвимости
CVSS3: 5.4
nvd
около 4 лет назад
A vulnerability was discovered in GitLab versions 10.5 to 14.5.4, 14.6 to 14.6.4, and 14.7 to 14.7.1. GitLab was vulnerable to a blind SSRF attack through the Project Import feature.
CVSS3: 5.4
debian
около 4 лет назад
A vulnerability was discovered in GitLab versions 10.5 to 14.5.4, 14.6 ...
CVSS3: 8.1
github
около 4 лет назад
A vulnerability was discovered in GitLab versions 10.5 to 14.5.4, 14.6 to 14.6.4, and 14.7 to 14.7.1. GitLab was vulnerable to a blind SSRF attack through the Project Import feature.
EPSS
Процентиль: 42%
0.00198
Низкий
5.5 Medium
CVSS2
5.4 Medium
CVSS3