| Added |
CVSS V3.1 |
|
NIST AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
|
| Added |
CWE |
|
NIST CWE-863
|
| Added |
CPE Configuration |
|
OR
*cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:* versions from (including) 11.3 up to (excluding) 16.7.7
*cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:* versions from (including) 11.3 up to (excluding) 16.7.7
*cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:* versions from (including) 16.8.0 up to (excluding) 16.8.4
*cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:* versions from (including) 16.8.0 up to (excluding) 16.8.4
*cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:* versions from (including) 16.9.0 up to (excluding) 16.9.2
*cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:* versions from (including) 16.9.0 up to (excluding) 16.9.2
|
| Changed |
Reference Type |
https://about.gitlab.com/releases/2024/03/06/security-release-gitlab-16-9-2-released/ No Types Assigned
|
https://about.gitlab.com/releases/2024/03/06/security-release-gitlab-16-9-2-released/ Release Notes
|
| Changed |
Reference Type |
https://about.gitlab.com/releases/2024/03/06/security-release-gitlab-16-9-2-released/ No Types Assigned
|
https://about.gitlab.com/releases/2024/03/06/security-release-gitlab-16-9-2-released/ Release Notes
|
| Changed |
Reference Type |
https://gitlab.com/gitlab-org/gitlab/-/issues/436977 No Types Assigned
|
https://gitlab.com/gitlab-org/gitlab/-/issues/436977 Exploit, Issue Tracking
|
| Changed |
Reference Type |
https://gitlab.com/gitlab-org/gitlab/-/issues/436977 No Types Assigned
|
https://gitlab.com/gitlab-org/gitlab/-/issues/436977 Exploit, Issue Tracking
|
| Changed |
Reference Type |
https://hackerone.com/reports/2295423 No Types Assigned
|
https://hackerone.com/reports/2295423 Permissions Required
|
| Changed |
Reference Type |
https://hackerone.com/reports/2295423 No Types Assigned
|
https://hackerone.com/reports/2295423 Permissions Required
|
) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
