An issue has been discovered in GitLab EE affecting all versions from 13.3.0 prior to 16.6.7, 16.7 prior to 16.7.5, and 16.8 prior to 16.8.2 which allows an attacker to do a resource exhaustion using GraphQL `vulnerabilitiesCountByDay`
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://gitlab.com/gitlab-org/gitlab/-/issues/420341 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: GitLab
Published: 2024-02-07T22:02:11.043Z
Updated: 2024-08-29T15:04:54.815Z
Reserved: 2024-01-30T12:02:21.519Z
Link: CVE-2024-1066
Vulnrichment
Updated: 2024-08-01T18:26:30.545Z
NVD
Status : Analyzed
Published: 2024-02-07T22:15:09.797
Modified: 2024-03-04T21:00:15.267
Link: CVE-2024-1066
Redhat
No data.