CVE-2023-0042
on gitlab
on gitlab
Published
Severity
CVSS v3:
6.1 MEDIUM
CVSS v2:
N/A
Description
An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.4 prior to 15.5.7, 15.6 prior to 15.6.4, and 15.7 prior to 15.7.2. GitLab Pages allows redirection to arbitrary protocols.
References
Configurations
CPE23 | Version Start | Version End | Exact Version |
---|---|---|---|
cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:* | 15.7.0 (including) | 15.7.2 | * |
cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:* | 15.7.0 (including) | 15.7.2 | * |
cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:* | 15.6.0 (including) | 15.6.4 | * |
cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:* | 15.6.0 (including) | 15.6.4 | * |
cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:* | 11.4.0 (including) | 15.5.7 | * |
cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:* | 11.4.0 (including) | 15.5.7 | * |