An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.11 before 13.11.7, all versions starting from 13.12 before 13.12.8, and all versions starting from 14.0 before 14.0.4. A specially crafted design image allowed attackers to read arbitrary files on the server.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: GitLab
Published: 2021-08-05T20:30:25
Updated: 2024-08-03T18:37:18.427Z
Reserved: 2021-01-05T00:00:00
Link: CVE-2021-22234
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2021-08-05T21:15:10.870
Modified: 2022-07-22T11:56:29.530
Link: CVE-2021-22234
Redhat
No data.