An issue has been discovered in GitLab EE affecting all versions starting from 14.5 before 15.1.6, all versions starting from 15.2 before 15.2.4, all versions starting from 15.3 before 15.3.2. GitLab's Zentao integration has an insecure direct object reference vulnerability that may be exploited by an attacker to leak Zentao project issues.
Metrics
Affected Vendors & Products
Fixes
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
References
History
Sat, 12 Jul 2025 13:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
epss
|
epss
|
Wed, 14 May 2025 21:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|

Status: PUBLISHED
Assigner: GitLab
Published:
Updated: 2025-05-14T20:19:13.396Z
Reserved: 2022-09-27T00:00:00.000Z
Link: CVE-2022-3331

Updated: 2024-08-03T01:07:06.541Z

Status : Modified
Published: 2022-10-17T16:15:22.827
Modified: 2025-05-14T21:15:54.130
Link: CVE-2022-3331

No data.

No data.