VYPR
Unrated severityNVD Advisory· Published May 12, 2023· Updated Jan 24, 2025

CVE-2023-2181

CVE-2023-2181

Description

An issue has been discovered in GitLab affecting all versions before 15.9.8, 15.10.0 before 15.10.7, and 15.11.0 before 15.11.3. A malicious developer could use a git feature called refs/replace to smuggle content into a merge request which would not be visible during review in the UI.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • GitLab Inc./GitLabllm-fuzzy2 versions
    <15.9.8, >=15.10.0 <15.10.7, >=15.11.0 <15.11.3+ 1 more
    • (no CPE)range: <15.9.8, >=15.10.0 <15.10.7, >=15.11.0 <15.11.3
    • (no CPE)range: <15.9.8
  • osv-coords
    Range: < 15.9.8

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.