An issue has been discovered in GitLab CE/EE affecting all versions starting from 10.3 before 15.11.10, all versions starting from 16.0 before 16.0.6, all versions starting from 16.1 before 16.1.1. A Regular Expression Denial of Service was possible via sending crafted payloads to the preview_markdown endpoint.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: GitLab
Published: 2023-07-13T02:08:07.284Z
Updated: 2024-08-02T06:55:03.222Z
Reserved: 2023-06-27T05:16:56.910Z
Link: CVE-2023-3424
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2023-07-13T03:15:10.347
Modified: 2023-07-20T20:53:05.130
Link: CVE-2023-3424
Redhat
No data.