CRITICAL10.0CVE-2021-22205⚠ KEVGitLab Community and Enterprise Editions Remote Code Execution Vulnerability >= 11.9.0, < 13.8.8, >= 13.9.0, < 13.9.6, >= 13.10.0, < 13.10.3
CRITICAL9.8CVE-2021-22175⚠ KEVGitLab Server-Side Request Forgery (SSRF) Vulnerability >= 10.5.0, < 13.6.7, >= 13.7.0, < 13.7.7, >= 13.8.0, < 13.8.4
CRITICAL9.8CVE-2023-7028⚠ KEVWeak Password Recovery Mechanism for Forgotten Password in GitLab >= 16.1.0, < 16.1.6, >= 16.2.0, < 16.2.9, >= 16.3.0, < 16.3.7, >= 16.4.0, < 16.4.5, >= 16.5.0, < 16.5.6, >= 16.6.0, < 16.6.4, >= 16.7.0, < 16.7.2
HIGH7.5⚠ KEVGitLab Community and Enterprise Editions Server-Side Request Forgery (SSRF) Vulnerability
>= 10.5.0, < 14.3.6, >= 14.4.0, < 14.4.4, >= 14.5.0, < 14.5.2
CRITICAL10.0The Ruby SAML library vulnerable to a SAML authentication bypass via Incorrect XPath selector
from 0, < 16.11.10, >= 17.0.0, < 17.0.8, >= 17.1.0, < 17.1.8, >= 17.2.0, < 17.2.7, >= 17.3.0, < 17.3.3
CRITICAL10.0GitLab CE/EE version 13.3 prior to 13.3.4 was vulnerable to an OAuth authorization scope change without user consent in the middle of the a…
>= 13.3.0, < 13.3.4
CRITICAL9.9Missing Authorization in GitLab
>= 17.11.0, < 18.0.2
CRITICAL9.9A vulnerability in GitLab CE/EE affecting all versions from 11.3.4 prior to 15.1.5, 15.2 to 15.2.3, 15.3 to 15.3 to 15.3.1 allows an an aut…
>= 11.3.4, < 15.1.5, >= 15.2.0, < 15.2.3, >= 15.3.0, < 15.3.1
CRITICAL9.9A vulnerability in GitLab CE/EE affecting all versions from 11.10 prior to 15.1.6, 15.2 to 15.2.4, 15.3 to 15.3.2 allows an authenticated u…
>= 11.10.0, < 15.1.6, >= 15.2.0, < 15.2.4, >= 15.3.0, < 15.3.2
CRITICAL9.9Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in GitLab
>= 16.0.0, < 16.5.8, >= 16.6.0, < 16.6.6, >= 16.7.0, < 16.7.4, >= 16.8.0, < 16.8.1
CRITICAL9.8Ruby SAML vulnerable to SAML authentication bypass due to namespace handling (parser differential)
from 0, < 17.9.2
CRITICAL9.8ruby-saml vulnerable to SAML authentication bypass due to DOCTYPE handling (parser differential)
from 0, < 17.9.2
CRITICAL9.8Improper Access Control in GitLab
>= 15.8.0, < 16.11.6, >= 17.0.0, < 17.0.4, >= 17.1.0, < 17.1.2
CRITICAL9.8GitLab 10.1 through 12.8.1 has Incorrect Access Control.
>= 10.1.0, < 12.8.2
CRITICAL9.8GitLab EE 3.0 through 12.8.1 allows SSRF.
>= 3.0.0, < 12.8.2
CRITICAL9.8GitLab 8.10 and later through 12.9 is vulnerable to an SSRF in a project import note feature.
>= 8.10.0, < 12.9.1
CRITICAL9.8GitLab EE/CE 8.0.rc1 to 12.9 is vulnerable to a blind SSRF in the FogBugz integration.
>= 8.0.0, < 12.9.1
CRITICAL9.8A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4.
>= 7.7.0, < 13.1.10, >= 13.2.0, < 13.2.8, >= 13.3.0, < 13.3.4
CRITICAL9.8GitLab 10.7 and later through 12.7.2 has Incorrect Access Control.
>= 10.7.0, < 12.6.8
CRITICAL9.8GitLab EE 8.9 and later through 12.7.2 has Insecure Permission
>= 8.9.0, < 12.5.9, >= 12.6.0, < 12.6.6 | >= 12.7.0, <= 12.7.2
CRITICAL9.8An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.7.9 before 13.8.7, all versions starting from 13.9 bef…
>= 13.7.9, < 13.8.7, >= 13.9.0, < 13.9.5, >= 13.10.0, < 13.10.1
CRITICAL9.8It was possible to bypass 2FA for LDAP users and access some specific pages with Basic Authentication in GitLab 14.1.1 and above.
>= 14.1.1, < 14.1.7, >= 14.2.0, < 14.2.5, >= 14.3.0, < 14.3.1
CRITICAL9.8An issue has been discovered in GitLab CE/EE affecting all versions starting from 12.10 before 14.6.5, all versions starting from 14.7 befo…
>= 12.10.0, < 14.6.5, >= 14.7.0, < 14.7.4, >= 14.8.0, < 14.8.2
CRITICAL9.8A hardcoded password was set for accounts registered using an OmniAuth provider (e.g.
>= 14.7.0, < 14.7.7, >= 14.8.0, < 14.8.5, >= 14.9.0, < 14.9.2
CRITICAL9.8An issue has been discovered in GitLab affecting all versions starting from 10.0 before 12.9.8, all versions starting from 12.10 before 12.…
>= 10.0.0, < 12.9.8, >= 12.10.0, < 12.10.7, >= 13.0.0, < 13.0.1
CRITICAL9.8An issue was identified in GitLab CE/EE affecting all versions from 1.0 prior to 15.8.5, 15.9 prior to 15.9.4, and 15.10 prior to 15.10.1 w…
>= 1.0.0, < 15.8.5, >= 15.9.0, < 15.9.4, >= 15.10.0, < 15.10.1
CRITICAL9.8Incorrect Ownership Assignment in GitLab
>= 15.9.0, < 16.0.8, >= 16.1.0, < 16.1.3, >= 16.2.0, < 16.2.2
CRITICAL9.8Incorrect Authorization in GitLab
>= 13.12.0, < 16.2.7, >= 16.3.0, < 16.3.4
CRITICAL9.6Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab
>= 18.6.0, < 18.6.3, >= 18.7.0, < 18.7.1
CRITICAL9.6Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab
>= 14.10.0, < 18.2.7, >= 18.3.0, < 18.3.3, >= 18.4.0, < 18.4.1
CRITICAL9.6In GitLab before 13.0.12, 13.1.6 and 13.2.3, it is possible to bypass E-mail verification which is required for OAuth Flow.
>= 12.3.0, < 13.0.12, >= 13.1.0, < 13.1.6, >= 13.2.0, < 13.2.3
CRITICAL9.1Origin Validation Error in GitLab
>= 18.2.0, < 18.6.6, >= 18.7.0, < 18.7.4, >= 18.8.0, < 18.8.4
CRITICAL9.1Exposure of Sensitive Information Due to Incompatible Policies in GitLab
>= 8.0.0, < 16.4.0
CRITICAL9.1Incorrect Authorization in GitLab
>= 13.3.0, < 17.1.7, >= 17.2.0, < 17.2.5, >= 17.3.0, < 17.3.2
CRITICAL9.1GitLab 12.7 through 12.8.1 has Insecure Permissions.
>= 12.7.0, < 12.8.2
CRITICAL9.1A command injection vulnerability was discovered in Gitlab runner versions prior to 13.2.4, 13.3.2 and 13.4.1.
>= 12.0.0, < 13.2.4, >= 13.3.0, < 13.3.2, >= 13.4.0, < 13.4.1
CRITICAL9.1A vulnerability was discovered in GitLab starting with version 12.
>= 12.0.0, < 14.5.4, >= 14.6.0, < 14.6.4, >= 14.7.0, < 14.7.1
CRITICAL9.0Lack of sand-boxing of OpenAPI documents in GitLab CE/EE affecting all versions from 12.6 prior to 15.3.5, 15.4 prior to 15.4.4, and 15.5 p…
>= 12.6.0, < 15.3.5, >= 15.4.0, < 15.4.4, >= 15.5.0, < 15.5.2
HIGH8.8Improper Handling of Parameters in GitLab
>= 14.3.0, < 18.8.7, >= 18.9.0, < 18.9.3, >= 18.10.0, < 18.10.1
HIGH8.8Cross-Site Request Forgery (CSRF) in GitLab
>= 17.10.0, < 18.8.7, >= 18.9.0, < 18.9.3, >= 18.10.0, < 18.10.1
HIGH8.8Missing Authorization in GitLab
>= 17.1.0, < 18.3.5, >= 18.4.0, < 18.4.3, >= 18.5.0, < 18.5.1
HIGH8.8Privilege Defined With Unsafe Actions in GitLab
>= 16.6.0, < 18.2.7, >= 18.3.0, < 18.3.3, >= 18.4.0, < 18.4.1
HIGH8.8Server-Side Request Forgery (SSRF) in GitLab
>= 16.11.0, < 18.1.6, >= 18.2.0, < 18.2.6, >= 18.3.0, < 18.3.2
HIGH8.8Business Logic Errors in GitLab
>= 17.3.0, < 18.0.1, >= 18.1.0
HIGH8.8Incorrect Authorization in GitLab
>= 17.4.0, < 17.10.1
HIGH8.8Unintended Proxy or Intermediary ('Confused Deputy') in GitLab
>= 15.11.0, < 17.8.2
HIGH8.8Cross-Site Request Forgery (CSRF) in GitLab
>= 10.6.0, < 16.9.7, >= 16.10.0, < 16.10.5, >= 16.11.0, < 16.11.2
HIGH8.8Missing Authorization in GitLab
>= 8.12.0, < 17.4.5, >= 17.5.0, < 17.5.3, >= 17.6.0, < 17.6.1
HIGH8.8Incorrect Authorization in GitLab
>= 16.0.0, < 17.3.7, >= 17.4.0, < 17.4.4, >= 17.5.0, < 17.5.2
HIGH8.8Incorrect Authorization in GitLab
>= 11.6.0, < 17.2.9, >= 17.3.0, < 17.3.5, >= 17.4.0, < 17.4.2
HIGH8.8Missing Authentication for Critical Function in GitLab
>= 12.5.0, < 17.2.9, >= 17.3.0, < 17.3.5, >= 17.4.0, < 17.4.2
HIGH8.8Authentication Bypass by Spoofing in GitLab
>= 8.14.0, < 17.1.7, >= 17.2.0, < 17.2.5, >= 17.3.0, < 17.3.2
HIGH8.8Improper Neutralization of Special Elements used in a Command ('Command Injection') in GitLab
>= 16.11.0, < 17.1.7, >= 17.2.0, < 17.2.5, >= 17.3.0, < 17.3.2
HIGH8.8Privilege Context Switching Error in GitLab
>= 13.7.0, < 17.1.7, >= 17.2.0, < 17.2.5, >= 17.3.0, < 17.3.2
HIGH8.8Improper Access Control in GitLab
>= 15.8.0, < 16.11.5, >= 17.0.0, < 17.0.3, >= 17.1.0, < 17.1.1
HIGH8.8Authentication Bypass by Assumed-Immutable Data in GitLab
>= 7.8.0, < 16.9.6, >= 16.10.0, < 16.10.4, >= 16.11.0, < 16.11.1
HIGH8.8An authorization issue relating to project maintainer impersonation was identified in GitLab EE 9.5 and later through 13.0.1 that could all…
>= 9.5.0, < 12.9.8, >= 12.10.0, < 12.10.7, >= 13.0.0, < 13.0.1
HIGH8.8Missing permission check on fork relation creation in GitLab CE/EE 11.3 and later through 13.0.1 allows guest users to create a fork relati…
>= 11.3.0, < 12.9.8, >= 12.10.0, < 12.10.7, >= 13.0.0, < 13.0.1
HIGH8.8OAuth flow missing verification checks CE/EE 12.3 and later through 13.0.1 allows unverified user to use OAuth authorization code flow
>= 12.3.0, < 12.9.8, >= 12.10.0, < 12.10.7, >= 13.0.0, < 13.0.1
HIGH8.8An issue has been discovered in GitLab affecting versions >=10.7 <13.0.14, >=13.1.0 <13.1.8, >=13.2.0 <13.2.6.
>= 10.7.0, < 13.0.14, >= 13.1.0, < 13.1.8, >= 13.2.0, < 13.2.6
HIGH8.8A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4.
>= 1.0.0, < 13.1.10, >= 13.2.0, < 13.2.8, >= 13.3.0, < 13.3.4
HIGH8.8An issue has been discovered in GitLab affecting all versions starting from 11.2.
>= 11.2.0, < 13.2.10, >= 13.3.0, < 13.3.7, >= 13.4.0, < 13.4.2
HIGH8.8An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.2 allowing unauthorized authenticated users to execute…
>= 13.2.0, < 13.7.9, >= 13.8.0, < 13.8.6, >= 13.9.0, < 13.9.4
HIGH8.8Due to improper handling of OAuth client IDs, new subscriptions generated OAuth tokens on an incorrect OAuth client application.
>= 14.1.0, < 14.1.2
HIGH8.8A collision in access memoization logic in all versions of GitLab CE/EE before 14.3.6, all versions starting from 14.4 before 14.4.4, all v…
from 0, < 14.3.6, >= 14.4.0, < 14.4.4, >= 14.5.0, < 14.5.2
HIGH8.8Missing sanitization of HTML attributes in Jupyter notebooks in all versions of GitLab CE/EE since version 14.5 allows an attacker to perfo…
>= 14.5.0, < 14.5.4, >= 14.6.0, < 14.6.4, >= 14.7.0, < 14.7.1
HIGH8.8Inaccurate display of Snippet files containing special characters in all versions of GitLab CE/EE allows an attacker to create Snippets wit…
>= 10.0.0, < 14.6.5, >= 14.7.0, < 14.7.4, >= 14.8.0, < 14.8.2
HIGH8.8Improper access control in the CI/CD cache mechanism in GitLab CE/EE affecting all versions starting from 1.0.2 before 14.8.6, all versions…
>= 1.0.2, < 14.8.6, >= 14.9.0, < 14.9.4, >= 14.10.0, < 14.10.1
HIGH8.8An account takeover issue has been discovered in GitLab EE affecting all versions starting from 11.10 before 14.9.5, all versions starting…
>= 11.0.0, < 14.9.5, >= 14.10.0, < 14.10.4, >= 15.0.0, < 15.0.1
HIGH8.8A critical issue has been discovered in GitLab affecting all versions starting from 14.0 prior to 14.10.5, 15.0 prior to 15.0.4, and 15.1 p…
>= 14.0.0, < 14.10.5, >= 15.0.0, < 15.0.4, >= 15.1.0, < 15.1.1
HIGH8.8An issue has been discovered in GitLab EE affecting all versions starting from 15.10 before 15.10.5, all versions starting from 15.11 befor…
>= 15.10.0, < 15.10.5, >= 15.11.0, < 15.11.1
HIGH8.8Improper User Management in GitLab
>= 16.0.0, < 16.4.4, >= 16.5.0, < 16.5.4, >= 16.6.0, < 16.6.2
HIGH8.8Execution with Unnecessary Privileges in GitLab
>= 16.0.0, < 16.2.8, >= 16.3.0, < 16.3.5, >= 16.4.0, < 16.4.1
HIGH8.8Incorrect Authorization in GitLab
>= 8.13.0, < 16.5.6, >= 16.6.0, < 16.6.4, >= 16.7.0, < 16.7.2
HIGH8.7Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab
>= 17.1.0, < 18.10.8, >= 18.11.0, < 18.11.5, >= 19.0.0, < 19.0.2
HIGH8.7Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab
>= 13.1.4, < 18.10.8, >= 18.11.0, < 18.11.5, >= 19.0.0, < 19.0.2
HIGH8.7Authorization Bypass Through User-Controlled Key in GitLab
>= 15.5.0, < 18.10.8, >= 18.11.0, < 18.11.5, >= 19.0.0, < 19.0.2
HIGH8.7Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab
>= 18.4.0, < 18.4.6, >= 18.5.0, < 18.5.4, >= 18.6.0, < 18.6.2
HIGH8.7Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) in GitLab
>= 18.0.0, < 18.0.2
HIGH8.7Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab
>= 16.6.0, < 17.11.1
HIGH8.7URL Redirection to Untrusted Site ('Open Redirect') in GitLab
>= 16.1.0, < 17.4.6, >= 17.5.0, < 17.5.4, >= 17.6.0, < 17.6.2
HIGH8.7An issue has been discovered in GitLab affecting all versions prior to 13.2.10, 13.3.7 and 13.4.2: Stored XSS in CI Job Log
>= 12.4.0, < 13.2.10, >= 13.3.0, < 13.3.7, >= 13.4.0, < 13.4.2
HIGH8.7Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab
>= 16.9.0, < 16.9.1
HIGH8.6When requests to the internal network for webhooks are enabled, a server-side request forgery vulnerability in GitLab CE/EE affecting all v…
>= 10.5.0, < 13.10.5, >= 13.11.0, < 13.11.5, >= 13.12.0, < 13.12.2
HIGH8.5Exposed Dangerous Method or Function in GitLab
>= 16.9.6, < 18.8.9, >= 18.9.0, < 18.9.5, >= 18.10.0, < 18.10.3
HIGH8.5An issue has been discovered in GitLab CE/EE affecting all versions before 15.5.7, all versions starting from 15.6 before 15.6.4, all versi…
from 0, < 15.5.7, >= 15.6.0, < 15.6.4, >= 15.7.0, < 15.7.2
HIGH8.3A vulnerability was discovered in GitLab versions prior to 13.1.
from 0, < 12.10.13, >= 13.0.0, < 13.0.8, >= 13.1.0, < 13.1.2
HIGH8.2Authorization Bypass Through User-Controlled Key in GitLab
>= 18.8.0, < 18.10.7, >= 18.11.0, < 18.11.4 | >= 19.0.0, <= 19.0.0
HIGH8.2Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab
>= 15.11.0, < 16.10.6, >= 16.11.0, < 16.11.3, >= 17.0.0, < 17.0.1
HIGH8.2An issue has been discovered in GitLab CE/EE affecting all versions starting from 8.8.9.
from 0, < 13.5.2
HIGH8.1Business Logic Errors in GitLab
>= 16.0.0, < 18.9.7, >= 18.10.0, < 18.10.6, >= 18.11.0, < 18.11.3
HIGH8.1Improper Resolution of Path Equivalence in GitLab
>= 18.10.0, < 18.10.4, >= 18.11.0, < 18.11.1
HIGH8.1Cross-Site Request Forgery (CSRF) in GitLab
>= 17.0.0, < 18.9.6, >= 18.10.0, < 18.10.4, >= 18.11.0, < 18.11.1
HIGH8.1Authentication Bypass Using an Alternate Path or Channel in GitLab
>= 7.11.0, < 18.8.7, >= 18.9.0, < 18.9.3, >= 18.10.0, < 18.10.1
HIGH8.1Missing Authorization in GitLab
>= 17.6.0, < 18.3.5, >= 18.4.0, < 18.4.3, >= 18.5.0, < 18.5.1
HIGH8.1Cross-Site Request Forgery (CSRF) in GitLab
>= 16.1.0, < 16.11.5, >= 17.0.0, < 17.1.2
HIGH8.1Server-Side Request Forgery (SSRF) in GitLab
>= 15.10.0, < 17.2.9, >= 17.3.0, < 17.3.5, >= 17.4.0, < 17.4.2
HIGH8.1External Control of Critical State Data in GitLab
>= 16.9.7, < 17.1.7, >= 17.2.0, < 17.2.5, >= 17.3.0, < 17.3.2
HIGH8.1Authorization Bypass Through User-Controlled Key in GitLab
>= 8.12.0, < 17.0.6, >= 17.1.0, < 17.1.4, >= 17.2.0, < 17.2.2
HIGH8.1Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in GitLab
>= 16.9.0, < 16.9.6, >= 16.10.0, < 16.10.4, >= 16.11.0, < 16.11.1