Опубликовано: 01 апр. 2022
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 6.5
CVSS3: 5.4
Описание
A DNS rebinding vulnerability in the Irker IRC Gateway integration in all versions of GitLab CE/EE since version 7.9 allows an attacker to trigger Server Side Request Forgery (SSRF) attacks.
| Релиз | Статус | Примечание |
|---|---|---|
| esm-apps/xenial | ignored | not maintainable |
| trusty | ignored | end of standard support |
| upstream | needs-triage | |
| xenial | ignored | end of standard support |
Показывать по
10
EPSS
Процентиль: 37%
0.00151
Низкий
6.5 Medium
CVSS2
5.4 Medium
CVSS3
Связанные уязвимости
CVSS3: 5.4
nvd
около 3 лет назад
A DNS rebinding vulnerability in the Irker IRC Gateway integration in all versions of GitLab CE/EE since version 7.9 allows an attacker to trigger Server Side Request Forgery (SSRF) attacks.
CVSS3: 7.6
github
около 3 лет назад
A DNS rebinding vulnerability in the Irker IRC Gateway integration in all versions of GitLab CE/EE since version 7.9 allows an attacker to trigger Server Side Request Forgery (SSRF) attacks.
EPSS
Процентиль: 37%
0.00151
Низкий
6.5 Medium
CVSS2
5.4 Medium
CVSS3