An issue has been discovered in GitLab EE affecting all versions starting from 11.3 before 16.7.6, all versions starting from 16.8 before 16.8.3, all versions starting from 16.9 before 16.9.1. It was possible for an attacker to cause a client-side denial of service using malicious crafted content in the CODEOWNERS file.
References
Link | Resource |
---|---|
https://gitlab.com/gitlab-org/gitlab/-/issues/435036 | Issue Tracking Permissions Required |
https://hackerone.com/reports/2269023 | Permissions Required Technical Description |
Configurations
Configuration 1 (hide)
|
History
04 Mar 2024, 20:33
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:gitlab:gitlab:16.9.0:*:*:*:enterprise:*:*:* cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:* |
|
References | () https://gitlab.com/gitlab-org/gitlab/-/issues/435036 - Issue Tracking, Permissions Required | |
References | () https://hackerone.com/reports/2269023 - Permissions Required, Technical Description | |
First Time |
Gitlab
Gitlab gitlab |
26 Feb 2024, 21:15
Type | Values Removed | Values Added |
---|---|---|
Summary | An issue has been discovered in GitLab EE affecting all versions starting from 11.3 before 16.7.6, all versions starting from 16.8 before 16.8.3, all versions starting from 16.9 before 16.9.1. It was possible for an attacker to cause a client-side denial of service using malicious crafted content in the CODEOWNERS file. |
07 Feb 2024, 22:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-02-07 22:15
Updated : 2024-03-04 20:33
NVD link : CVE-2023-6736
Mitre link : CVE-2023-6736
CVE.ORG link : CVE-2023-6736
JSON object : View
Products Affected
gitlab
- gitlab
CWE
CWE-400
Uncontrolled Resource Consumption