GitLab Multiple Vulnerabilities
Release Date: 7 Nov 2022 2938 Views
RISK: Medium Risk
TYPE: Servers - Other Servers
Multiple vulnerabilities were identified in GitLab. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, spoofing, remote code execution, sensitive information disclosure, cross-site scripting and security restriction bypass on the targeted system.
- Information Disclosure
- Cross-Site Scripting
- Security Restriction Bypass
- Denial of Service
- Remote Code Execution
System / Technologies affected
- GitLab Community Edition (CE) versions prior to 15.5.2, 15.4.4, and 15.3.5
- GitLab Enterprise Edition (EE) versions prior to 15.5.2, 15.4.4, and 15.3.5
Before installation of the software, please visit the vendor web-site for more details.
Apply fixes issued by the vendor: