VYPR
Unrated severityNVD Advisory· Published Nov 9, 2022· Updated May 1, 2025

CVE-2022-3486

CVE-2022-3486

Description

An open redirect vulnerability in GitLab EE/CE affecting all versions from 9.3 prior to 15.3.5, 15.4 prior to 15.4.4, and 15.5 prior to 15.5.2, allows an attacker to redirect users to an arbitrary location if they trust the URL.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • GitLab Inc./GitLabllm-fuzzy2 versions
    >=9.3, <15.3.5; >=15.4, <15.4.4; >=15.5, <15.5.2+ 1 more
    • (no CPE)range: >=9.3, <15.3.5; >=15.4, <15.4.4; >=15.5, <15.5.2
    • (no CPE)range: >=9.4, <15.3.5
  • osv-coords
    Range: >= 9.4.0, < 15.3.5

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.