An issue has been discovered in GitLab affecting all versions starting from 8.15 before 16.2.8, all versions starting from 16.3 before 16.3.5, all versions starting from 16.4 before 16.4.1. It was possible to hijack some links and buttons on the GitLab UI to a malicious page.
Metrics
Affected Vendors & Products
References
History
Thu, 19 Sep 2024 02:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Thu, 29 Aug 2024 15:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
CPEs | cpe:2.3:a:gitlab:gitlab:*:*:*:*:*:*:*:* |
MITRE
Status: PUBLISHED
Assigner: GitLab
Published: 2023-09-29T07:30:50.402Z
Updated: 2024-09-18T04:06:05.242Z
Reserved: 2023-07-25T10:30:45.145Z
Link: CVE-2023-3922
Vulnrichment
Updated: 2024-08-02T07:08:50.765Z
NVD
Status : Analyzed
Published: 2023-09-29T08:15:09.537
Modified: 2023-10-03T19:46:15.090
Link: CVE-2023-3922
Redhat
No data.