[Forgot Password]
Login  Register Subscribe

30481

 
 

423868

 
 

255116

 
 

909

 
 

198683

 
 

282

Paid content will be excluded from the download.


Download | Alert*
OVAL

Improper Control of Resource Identifiers in GitLab CE/EE - CVE-2023-3444 (dpkg)

ID: oval:org.secpod.oval:def:91251Date: (C)2023-07-24   (M)2023-11-10
Class: VULNERABILITYFamily: unix




The host is installed with GitLab CE/EE 15.3 before 15.11.10, 16.0 before 16.0.6 or 16.1 before 16.1.1 and is prone to an improper control of resource identifiers. A flaw is present in the application, which fails to properly handle unspecified vectors. Successful exploitation could allow remote attackers to merge arbitrary code into protected branches.

Platform:
Linux
Product:
gitlab-ce
gitlab-ee
Reference:
CVE-2023-3444
CVE    1
CVE-2023-3444
CPE    2
cpe:/a:gitlab:gitlab:::~~community~~~
cpe:/a:gitlab:gitlab:::~~enterprise~~~

© SecPod Technologies