An issue has been discovered in GitLab EE with Advanced Search affecting all versions from 13.9 to 16.3.6, 16.4 prior to 16.4.2 and 16.5 prior to 16.5.1 that could allow a denial of service in the Advanced Search function by chaining too many syntax operators.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://gitlab.com/gitlab-org/gitlab/-/issues/423468 |
History
Thu, 29 Aug 2024 15:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
CPEs | cpe:2.3:a:gitlab:gitlab:*:*:*:*:*:*:*:* |
MITRE
Status: PUBLISHED
Assigner: GitLab
Published: 2023-11-06T12:18:56.276Z
Updated: 2024-08-29T20:45:33.347Z
Reserved: 2023-11-06T12:18:51.359Z
Link: CVE-2023-5963
Vulnrichment
Updated: 2024-08-02T08:14:25.152Z
NVD
Status : Analyzed
Published: 2023-11-06T13:15:10.110
Modified: 2023-11-14T17:51:28.610
Link: CVE-2023-5963
Redhat
No data.