exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 5

CVE-2024-8647

около 1 года назад

An issue was discovered in GitLab affecting all versions starting 15.2 to 17.4.6, 17.5 prior to 17.5.4, and 17.6 prior to 17.6.2. On self hosted installs, it was possible to leak the anti-CSRF-token to an external site while the Harbor integration was enabled.

CVSS3: 5.4

EPSS: Низкий

CVE-2024-8647

около 1 года назад

An issue was discovered in GitLab affecting all versions starting 15.2 to 17.4.6, 17.5 prior to 17.5.4, and 17.6 prior to 17.6.2. On self hosted installs, it was possible to leak the anti-CSRF-token to an external site while the Harbor integration was enabled.

CVSS3: 5.4

EPSS: Низкий

CVE-2024-8647

около 1 года назад

An issue was discovered in GitLab affecting all versions starting 15.2 ...

CVSS3: 5.4

EPSS: Низкий

GHSA-4xpw-245v-vp2w

около 1 года назад

An issue was discovered in GitLab affecting all versions starting 15.2 to 17.4.6, 17.5 prior to 17.5.4, and 17.6 prior to 17.6.2. On self hosted installs, it was possible to leak the anti-CSRF-token to an external site while the Harbor integration was enabled.

CVSS3: 5.4

EPSS: Низкий

BDU:2025-00478

больше 1 года назад

Уязвимость программной платформы на базе git для совместной работы над кодом GitLab, связанная с подделкой межсайтовых запросов, позволяющая нарушителю осуществить CSRF-атаку

CVSS3: 5.4

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2024-8647 An issue was discovered in GitLab affecting all versions starting 15.2 to 17.4.6, 17.5 prior to 17.5.4, and 17.6 prior to 17.6.2. On self hosted installs, it was possible to leak the anti-CSRF-token to an external site while the Harbor integration was enabled.	CVSS3: 5.4	0% Низкий	около 1 года назад
CVE-2024-8647 An issue was discovered in GitLab affecting all versions starting 15.2 to 17.4.6, 17.5 prior to 17.5.4, and 17.6 prior to 17.6.2. On self hosted installs, it was possible to leak the anti-CSRF-token to an external site while the Harbor integration was enabled.	CVSS3: 5.4	0% Низкий	около 1 года назад
CVE-2024-8647 An issue was discovered in GitLab affecting all versions starting 15.2 ...	CVSS3: 5.4	0% Низкий	около 1 года назад
GHSA-4xpw-245v-vp2w An issue was discovered in GitLab affecting all versions starting 15.2 to 17.4.6, 17.5 prior to 17.5.4, and 17.6 prior to 17.6.2. On self hosted installs, it was possible to leak the anti-CSRF-token to an external site while the Harbor integration was enabled.	CVSS3: 5.4	0% Низкий	около 1 года назад
BDU:2025-00478 Уязвимость программной платформы на базе git для совместной работы над кодом GitLab, связанная с подделкой межсайтовых запросов, позволяющая нарушителю осуществить CSRF-атаку	CVSS3: 5.4	0% Низкий	больше 1 года назад

Уязвимостей на страницу