Vulnerabilities > Gitlab > Gitlab > 14.0.8

DATE CVE VULNERABILITY TITLE RISK
2023-09-01 CVE-2022-4343 Unspecified vulnerability in Gitlab
An issue has been discovered in GitLab EE affecting all versions starting from 13.12 before 16.1.5, all versions starting from 16.2 before 16.2.5, all versions starting from 16.3 before 16.3.1 in which a project member can leak credentials stored in site profile.
network
low complexity
gitlab
4.3
4.3
2023-09-01 CVE-2023-0120 Unspecified vulnerability in Gitlab
An issue has been discovered in GitLab affecting all versions starting from 10.0 before 16.1.5, all versions starting from 16.2 before 16.2.5, all versions starting from 16.3 before 16.3.1.
network
low complexity
gitlab
4.3
4.3
2023-09-01 CVE-2023-1279 Open Redirect vulnerability in Gitlab
An issue has been discovered in GitLab affecting all versions starting from 4.1 before 16.1.5, all versions starting from 16.2 before 16.2.5, all versions starting from 16.3 before 16.3.1 where it was possible to create a URL that would redirect to a different project.
network
low complexity
gitlab CWE-601
6.1
6.1
2023-09-01 CVE-2023-4378 Unspecified vulnerability in Gitlab
An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.8 before 16.1.5, all versions starting from 16.2 before 16.2.5, all versions starting from 16.3 before 16.3.1.
network
low complexity
gitlab
4.3
4.3
2023-08-03 CVE-2023-3932 Unspecified vulnerability in Gitlab
An issue has been discovered in GitLab EE affecting all versions starting from 13.12 before 16.0.8, all versions starting from 16.1 before 16.1.3, all versions starting from 16.2 before 16.2.2.
network
low complexity
gitlab
6.5
6.5
2023-08-02 CVE-2023-2022 Unspecified vulnerability in Gitlab
An issue has been discovered in GitLab CE/EE affecting all versions starting before 16.0.8, all versions starting from 16.1 before 16.1.3, all versions starting from 16.2 before 16.2.2, which leads to developers being able to create pipeline schedules on protected branches even if they don't have access to merge
network
low complexity
gitlab
4.3
4.3
2023-08-02 CVE-2023-3401 Code Injection vulnerability in Gitlab
An issue has been discovered in GitLab affecting all versions before 16.0.8, all versions starting from 16.1 before 16.1.3, all versions starting from 16.2 before 16.2.2.
network
low complexity
gitlab CWE-94
6.5
6.5
2023-08-02 CVE-2023-3500 Cross-site Scripting vulnerability in Gitlab
An issue has been discovered in GitLab CE/EE affecting all versions starting from 10.0 before 16.0.8, all versions starting from 16.1 before 16.1.3, all versions starting from 16.2 before 16.2.2.
network
low complexity
gitlab CWE-79
6.1
6.1
2023-08-02 CVE-2023-3994 Unspecified vulnerability in Gitlab
An issue has been discovered in GitLab CE/EE affecting all versions starting from 9.3 before 16.0.8, all versions starting from 16.1 before 16.1.3, all versions starting from 16.2 before 16.2.2.
network
low complexity
gitlab
7.5
7.5
2023-08-02 CVE-2023-1210 Unspecified vulnerability in Gitlab
An issue has been discovered in GitLab affecting all versions starting from 12.9 before 16.0.8, all versions starting from 16.1 before 16.1.3, all versions starting from 16.2 before 16.2.2.
network
low complexity
gitlab
4.3
4.3