Unrated severityNVD Advisory· Published Jul 1, 2022· Updated Aug 3, 2024
CVE-2022-2270
CVE-2022-2270
Description
An issue has been discovered in GitLab affecting all versions starting from 12.4 before 14.10.5, all versions starting from 15.0 before 15.0.4, all versions starting from 15.1 before 15.1.1. GitLab was leaking Conan packages names due to incorrect permissions verification.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3>=12.4, <14.10.5; >=15.0, <15.0.4; >=15.1, <15.1.1+ 1 more
- (no CPE)range: >=12.4, <14.10.5; >=15.0, <15.0.4; >=15.1, <15.1.1
- (no CPE)range: >=12.4, <14.10.5
Patches
Vulnerability mechanics
References
3- gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-2270.jsonmitrex_refsource_CONFIRM
- gitlab.com/gitlab-org/gitlab/-/issues/223074mitrex_refsource_MISC
- hackerone.com/reports/901473mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.