Denial of Service in pipelines affecting all versions of Gitlab EE and CE prior to 16.2.8, 16.3 prior to 16.3.5, and 16.4 prior to 16.4.1 allows attacker to cause pipelines to fail.
References
Link | Resource |
---|---|
https://gitlab.com/gitlab-org/gitlab/-/issues/417896 | Broken Link |
https://hackerone.com/reports/2055158 | Permissions Required |
Configurations
Configuration 1 (hide)
|
History
03 Oct 2023, 15:25
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.5 |
CPE | cpe:2.3:a:gitlab:gitlab:16.4.0:*:*:*:community:*:*:* cpe:2.3:a:gitlab:gitlab:16.4.0:*:*:*:enterprise:*:*:* cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:* cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:* |
|
First Time |
Gitlab
Gitlab gitlab |
|
References | (MISC) https://gitlab.com/gitlab-org/gitlab/-/issues/417896 - Broken Link | |
References | (MISC) https://hackerone.com/reports/2055158 - Permissions Required | |
CWE | NVD-CWE-noinfo |
29 Sep 2023, 07:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-09-29 07:15
Updated : 2024-02-28 20:33
NVD link : CVE-2023-3917
Mitre link : CVE-2023-3917
CVE.ORG link : CVE-2023-3917
JSON object : View
Products Affected
gitlab
- gitlab
CWE