Vulnerabilities > CVE-2023-1787 - Unspecified vulnerability in Gitlab

CVSS 5.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

LOW

network

low complexity

gitlab

NVD

Published: 2023-04-05

Updated: 2023-04-12

Summary

An issue has been discovered in GitLab affecting all versions starting from 15.9 before 15.9.4, all versions starting from 15.10 before 15.10.1. A search timeout could be triggered if a specific HTML payload was used in the issue description.

Vulnerable Configurations

Part	Description	Count
Application	Gitlab Gitlab Gitlab 15.10.0 Gitlab Gitlab 15.9.0 Gitlab Gitlab 15.9.1 Gitlab Gitlab 15.9.2	8

References

https://gitlab.com/gitlab-org/gitlab/-/issues/394817
https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-1787.json