Unrated severityNVD Advisory· Published Jul 1, 2022· Updated Aug 3, 2024
CVE-2022-2250
CVE-2022-2250
Description
An open redirect vulnerability in GitLab EE/CE affecting all versions from 11.1 prior to 14.10.5, 15.0 prior to 15.0.4, and 15.1 prior to 15.1.1, allows an attacker to redirect users to an arbitrary location if they trust the URL.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3>=11.1, <14.10.5, >=15.0, <15.0.4, >=15.1, <15.1.1+ 1 more
- (no CPE)range: >=11.1, <14.10.5, >=15.0, <15.0.4, >=15.1, <15.1.1
- (no CPE)range: >=11.1, <14.10.5
Patches
Vulnerability mechanics
References
3- gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-2250.jsonmitrex_refsource_CONFIRM
- gitlab.com/gitlab-org/gitlab/-/issues/355509mitrex_refsource_MISC
- hackerone.com/reports/1506126mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.