Vulnerabilities > Gitlab > Gitlab > 8.5.11

DATE CVE VULNERABILITY TITLE RISK
2024-02-21 CVE-2023-3509 Unspecified vulnerability in Gitlab
An issue has been discovered in GitLab affecting all versions before 16.7.6, all versions starting from 16.8 before 16.8.3, all versions starting from 16.9 before 16.9.1.
network
low complexity
gitlab
5.4
2024-01-26 CVE-2023-5612 Unspecified vulnerability in Gitlab
An issue has been discovered in GitLab affecting all versions before 16.6.6, 16.7 prior to 16.7.4, and 16.8 prior to 16.8.1.
network
low complexity
gitlab
5.3
2024-01-12 CVE-2023-6955 Exposure of Resource to Wrong Sphere vulnerability in Gitlab
An improper access control vulnerability exists in GitLab Remote Development affecting all versions prior to 16.5.6, 16.6 prior to 16.6.4 and 16.7 prior to 16.7.2.
network
low complexity
gitlab CWE-668
5.3
2023-12-15 CVE-2023-3904 Unspecified vulnerability in Gitlab
An issue has been discovered in GitLab EE affecting all versions starting before 16.4.4, all versions starting from 16.5 before 16.5.4, all versions starting from 16.6 before 16.6.2.
network
low complexity
gitlab
7.5
2023-12-15 CVE-2023-6051 Code Injection vulnerability in Gitlab
An issue has been discovered in GitLab CE/EE affecting all versions before 16.4.4, all versions starting from 16.5 before 16.5.4, all versions starting from 16.6 before 16.6.2.
network
low complexity
gitlab CWE-94
6.5
2023-12-01 CVE-2023-5226 Unspecified vulnerability in Gitlab
An issue has been discovered in GitLab affecting all versions before 16.4.3, all versions starting from 16.5 before 16.5.3, all versions starting from 16.6 before 16.6.1.
network
low complexity
gitlab
7.5
2023-11-06 CVE-2023-3246 Resource Exhaustion vulnerability in Gitlab
An issue has been discovered in GitLab EE/CE affecting all versions starting before 16.3.6, all versions starting from 16.4 before 16.4.2, all versions starting from 16.5 before 16.5.1 which allows an attackers to block Sidekiq job processor.
network
low complexity
gitlab CWE-400
4.3
2023-09-29 CVE-2023-3914 Unspecified vulnerability in Gitlab
A business logic error in GitLab EE affecting all versions prior to 16.2.8, 16.3 prior to 16.3.5, and 16.4 prior to 16.4.1 allows access to internal projects.
network
low complexity
gitlab
5.3
2023-09-29 CVE-2023-3917 Unspecified vulnerability in Gitlab
Denial of Service in pipelines affecting all versions of Gitlab EE and CE prior to 16.2.8, 16.3 prior to 16.3.5, and 16.4 prior to 16.4.1 allows attacker to cause pipelines to fail.
network
low complexity
gitlab
7.5
2023-09-01 CVE-2023-1279 Open Redirect vulnerability in Gitlab
An issue has been discovered in GitLab affecting all versions starting from 4.1 before 16.1.5, all versions starting from 16.2 before 16.2.5, all versions starting from 16.3 before 16.3.1 where it was possible to create a URL that would redirect to a different project.
network
low complexity
gitlab CWE-601
6.1