Vulnerabilities > Gitlab > Medium

DATE CVE VULNERABILITY TITLE RISK
2023-07-11 CVE-2023-1936 Unspecified vulnerability in Gitlab
An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.7 before 15.11.10, all versions starting from 16.0 before 16.0.6, all versions starting from 16.1 before 16.1.1, which allows an attacker to leak the email address of a user who created a service desk issue.
network
low complexity
gitlab
4.3
4.3
2023-06-28 CVE-2022-4143 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Gitlab
An issue has been discovered in GitLab affecting all versions starting from 15.7 before 15.8.5, from 15.9 before 15.9.4, and from 15.10 before 15.10.1 that allows for crafted, unapproved MRs to be introduced and merged without authorization
network
high complexity
gitlab CWE-367
5.3
5.3
2023-06-28 CVE-2023-2232 Unspecified vulnerability in Gitlab
An issue has been discovered in GitLab affecting all versions starting from 15.10 before 16.1, leading to a ReDoS vulnerability in the Jira prefix
network
low complexity
gitlab
6.5
6.5
2023-06-07 CVE-2023-0508 Unspecified vulnerability in Gitlab
An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.4 before 15.10.8, all versions starting from 15.11 before 15.11.7, all versions starting from 16.0 before 16.0.2.
network
low complexity
gitlab
4.3
4.3
2023-06-07 CVE-2023-1825 Unspecified vulnerability in Gitlab
An issue has been discovered in GitLab EE affecting all versions starting from 15.7 before 15.10.8, all versions starting from 15.11 before 15.11.7, all versions starting from 16.0 before 16.0.2.
network
low complexity
gitlab
4.3
4.3
2023-06-07 CVE-2023-2001 Unspecified vulnerability in Gitlab
An issue has been discovered in GitLab CE/EE affecting all versions before 15.10.8, all versions starting from 15.11 before 15.11.7, all versions starting from 16.0 before 16.0.2.
network
low complexity
gitlab
4.3
4.3
2023-06-07 CVE-2023-2013 Unspecified vulnerability in Gitlab
An issue has been discovered in GitLab CE/EE affecting all versions starting from 1.2 before 15.10.8, all versions starting from 15.11 before 15.11.7, all versions starting from 16.0 before 16.0.2.
network
low complexity
gitlab
4.3
4.3
2023-06-07 CVE-2023-2015 Cross-site Scripting vulnerability in Gitlab
An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.8 before 15.10.8, all versions starting from 15.11 before 15.11.7, all versions starting from 16.0 before 16.0.2.
network
low complexity
gitlab CWE-79
6.1
6.1
2023-06-07 CVE-2023-2485 Unspecified vulnerability in Gitlab
An issue has been discovered in GitLab CE/EE affecting all versions starting from 14.1 before 15.10.8, all versions starting from 15.11 before 15.11.7, all versions starting from 16.0 before 16.0.2.
network
low complexity
gitlab
4.9
4.9
2023-06-07 CVE-2023-2589 Unspecified vulnerability in Gitlab
An issue has been discovered in GitLab EE affecting all versions starting from 12.0 before 15.10.8, all versions starting from 15.11 before 15.11.7, all versions starting from 16.0 before 16.0.2.
network
low complexity
gitlab
5.3
5.3