Unrated severityNVD Advisory· Published Feb 12, 2025· Updated Feb 13, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab
CVE-2025-0376
Description
An XSS vulnerability exists in GitLab CE/EE affecting all versions from 13.3 prior to 17.6.5, 17.7 prior to 17.7.4 and 17.8 prior to 17.8.2 that allows an attacker to execute unauthorized actions via a change page.
Affected products
236cpe:2.3:a:gitlab:gitlab:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:gitlab:gitlab:*:*:*:*:*:*:*:*range: 13.3
- (no CPE)range: >=13.3 <17.6.5, >=17.7 <17.7.4, >=17.8 <17.8.2
- osv-coords234 versionspkg:apk/chainguard/gitaly-config-17.6pkg:apk/chainguard/gitaly-config-17.7pkg:apk/chainguard/gitaly-config-17.8pkg:apk/chainguard/gitlab-base-17.6pkg:apk/chainguard/gitlab-base-17.7pkg:apk/chainguard/gitlab-base-17.8pkg:apk/chainguard/gitlab-base-fips-17.6pkg:apk/chainguard/gitlab-base-fips-17.8pkg:apk/chainguard/gitlab-certificates-17.6pkg:apk/chainguard/gitlab-certificates-17.7pkg:apk/chainguard/gitlab-certificates-17.8pkg:apk/chainguard/gitlab-cfssl-self-sign-scripts-17.6pkg:apk/chainguard/gitlab-cfssl-self-sign-scripts-17.7pkg:apk/chainguard/gitlab-cfssl-self-sign-scripts-17.8pkg:apk/chainguard/gitlab-cng-17.6pkg:apk/chainguard/gitlab-cng-17.7pkg:apk/chainguard/gitlab-cng-17.8pkg:apk/chainguard/gitlab-cng-fips-17.6pkg:apk/chainguard/gitlab-cng-fips-17.8pkg:apk/chainguard/gitlab-container-registry-17.6pkg:apk/chainguard/gitlab-container-registry-17.7pkg:apk/chainguard/gitlab-container-registry-17.8pkg:apk/chainguard/gitlab-container-registry-compat-17.6pkg:apk/chainguard/gitlab-container-registry-compat-17.7pkg:apk/chainguard/gitlab-container-registry-compat-17.8pkg:apk/chainguard/gitlab-container-registry-fips-17.6pkg:apk/chainguard/gitlab-container-registry-fips-17.8pkg:apk/chainguard/gitlab-container-registry-scripts-17.6pkg:apk/chainguard/gitlab-container-registry-scripts-17.7pkg:apk/chainguard/gitlab-container-registry-scripts-17.8pkg:apk/chainguard/gitlab-docker-machine-fips-17.8pkg:apk/chainguard/gitlab-ee-17.6pkg:apk/chainguard/gitlab-ee-17.7pkg:apk/chainguard/gitlab-ee-17.8pkg:apk/chainguard/gitlab-ee-fips-17.6pkg:apk/chainguard/gitlab-ee-fips-17.7pkg:apk/chainguard/gitlab-ee-fips-17.8pkg:apk/chainguard/gitlab-elasticsearch-indexer-17.6pkg:apk/chainguard/gitlab-elasticsearch-indexer-17.7pkg:apk/chainguard/gitlab-elasticsearch-indexer-17.8pkg:apk/chainguard/gitlab-elasticsearch-indexer-compat-17.6pkg:apk/chainguard/gitlab-elasticsearch-indexer-compat-17.7pkg:apk/chainguard/gitlab-elasticsearch-indexer-compat-17.8pkg:apk/chainguard/gitlab-elasticsearch-indexer-fips-17.6pkg:apk/chainguard/gitlab-elasticsearch-indexer-fips-17.8pkg:apk/chainguard/gitlab-exporter-17.6pkg:apk/chainguard/gitlab-exporter-17.7pkg:apk/chainguard/gitlab-exporter-17.8pkg:apk/chainguard/gitlab-exporter-scripts-17.6pkg:apk/chainguard/gitlab-exporter-scripts-17.7pkg:apk/chainguard/gitlab-exporter-scripts-17.8pkg:apk/chainguard/gitlab-geo-logcursor-scripts-17.6pkg:apk/chainguard/gitlab-geo-logcursor-scripts-17.7pkg:apk/chainguard/gitlab-geo-logcursor-scripts-17.8pkg:apk/chainguard/gitlab-gitaly-scripts-17.6pkg:apk/chainguard/gitlab-gitaly-scripts-17.7pkg:apk/chainguard/gitlab-gitaly-scripts-17.8pkg:apk/chainguard/gitlab-logger-17.6pkg:apk/chainguard/gitlab-logger-17.7pkg:apk/chainguard/gitlab-logger-17.8pkg:apk/chainguard/gitlab-logger-compat-17.6pkg:apk/chainguard/gitlab-logger-compat-17.7pkg:apk/chainguard/gitlab-logger-compat-17.8pkg:apk/chainguard/gitlab-logger-fips-17.6pkg:apk/chainguard/gitlab-logger-fips-17.8pkg:apk/chainguard/gitlab-mailroom-17.6pkg:apk/chainguard/gitlab-mailroom-17.7pkg:apk/chainguard/gitlab-mailroom-17.8pkg:apk/chainguard/gitlab-mailroom-scripts-17.6pkg:apk/chainguard/gitlab-mailroom-scripts-17.7pkg:apk/chainguard/gitlab-mailroom-scripts-17.8pkg:apk/chainguard/gitlab-pages-17.6pkg:apk/chainguard/gitlab-pages-17.7pkg:apk/chainguard/gitlab-pages-17.8pkg:apk/chainguard/gitlab-pages-compat-17.6pkg:apk/chainguard/gitlab-pages-compat-17.7pkg:apk/chainguard/gitlab-pages-compat-17.8pkg:apk/chainguard/gitlab-pages-fips-17.6pkg:apk/chainguard/gitlab-pages-fips-17.7pkg:apk/chainguard/gitlab-pages-fips-17.8pkg:apk/chainguard/gitlab-pages-scripts-17.6pkg:apk/chainguard/gitlab-pages-scripts-17.7pkg:apk/chainguard/gitlab-pages-scripts-17.8pkg:apk/chainguard/gitlab-rails-ee-17.7pkg:apk/chainguard/gitlab-rails-ee-17.8pkg:apk/chainguard/gitlab-rails-ee-assets-17.7pkg:apk/chainguard/gitlab-rails-ee-assets-17.8pkg:apk/chainguard/gitlab-rails-ee-assets-fips-17.6pkg:apk/chainguard/gitlab-rails-ee-assets-fips-17.7pkg:apk/chainguard/gitlab-rails-ee-assets-fips-17.8pkg:apk/chainguard/gitlab-rails-ee-doc-17.7pkg:apk/chainguard/gitlab-rails-ee-doc-17.8pkg:apk/chainguard/gitlab-rails-ee-doc-fips-17.6pkg:apk/chainguard/gitlab-rails-ee-doc-fips-17.7pkg:apk/chainguard/gitlab-rails-ee-doc-fips-17.8pkg:apk/chainguard/gitlab-rails-ee-fips-17.6pkg:apk/chainguard/gitlab-rails-ee-fips-17.7pkg:apk/chainguard/gitlab-rails-ee-fips-17.8pkg:apk/chainguard/gitlab-rails-scripts-17.6pkg:apk/chainguard/gitlab-rails-scripts-17.7pkg:apk/chainguard/gitlab-rails-scripts-17.8pkg:apk/chainguard/gitlab-runner-fips-17.8pkg:apk/chainguard/gitlab-runner-helper-compat-17.8pkg:apk/chainguard/gitlab-runner-helper-compat-fips-17.8pkg:apk/chainguard/gitlab-runner-helper-fips-17.8pkg:apk/chainguard/gitlab-runner-helper-oci-entrypoint-17.8pkg:apk/chainguard/gitlab-runner-helper-oci-entrypoint-fips-17.8pkg:apk/chainguard/gitlab-runner-oci-entrypoint-17.8pkg:apk/chainguard/gitlab-runner-oci-entrypoint-fips-17.8pkg:apk/chainguard/gitlab-shell-17.6pkg:apk/chainguard/gitlab-shell-17.7pkg:apk/chainguard/gitlab-shell-17.8pkg:apk/chainguard/gitlab-shell-fips-17.6pkg:apk/chainguard/gitlab-shell-fips-17.8pkg:apk/chainguard/gitlab-shell-scripts-17.6pkg:apk/chainguard/gitlab-shell-scripts-17.7pkg:apk/chainguard/gitlab-shell-scripts-17.8pkg:apk/chainguard/gitlab-shell-scripts-compat-17.6pkg:apk/chainguard/gitlab-shell-scripts-compat-17.7pkg:apk/chainguard/gitlab-shell-scripts-compat-17.8pkg:apk/chainguard/gitlab-sidekiq-scripts-17.6pkg:apk/chainguard/gitlab-sidekiq-scripts-17.7pkg:apk/chainguard/gitlab-sidekiq-scripts-17.8pkg:apk/chainguard/gitlab-toolbox-fips-17.6pkg:apk/chainguard/gitlab-toolbox-fips-17.8pkg:apk/chainguard/gitlab-toolbox-scripts-17.6pkg:apk/chainguard/gitlab-toolbox-scripts-17.7pkg:apk/chainguard/gitlab-toolbox-scripts-17.8pkg:apk/chainguard/gitlab-webservice-config-17.6pkg:apk/chainguard/gitlab-webservice-config-17.7pkg:apk/chainguard/gitlab-webservice-config-17.8pkg:apk/chainguard/gitlab-webservice-scripts-17.6pkg:apk/chainguard/gitlab-webservice-scripts-17.7pkg:apk/chainguard/gitlab-webservice-scripts-17.8pkg:apk/chainguard/gitlab-workhorse-ee-17.6pkg:apk/chainguard/gitlab-workhorse-ee-17.7pkg:apk/chainguard/gitlab-workhorse-ee-17.8pkg:apk/chainguard/gitlab-workhorse-ee-fips-17.6pkg:apk/chainguard/gitlab-workhorse-ee-fips-17.7pkg:apk/chainguard/gitlab-workhorse-ee-fips-17.8pkg:apk/chainguard/gitlab-workhorse-scripts-17.6pkg:apk/chainguard/gitlab-workhorse-scripts-17.7pkg:apk/chainguard/gitlab-workhorse-scripts-17.8pkg:apk/wolfi/gitaly-config-17.6pkg:apk/wolfi/gitaly-config-17.7pkg:apk/wolfi/gitaly-config-17.8pkg:apk/wolfi/gitlab-base-17.6pkg:apk/wolfi/gitlab-base-17.7pkg:apk/wolfi/gitlab-base-17.8pkg:apk/wolfi/gitlab-certificates-17.6pkg:apk/wolfi/gitlab-certificates-17.7pkg:apk/wolfi/gitlab-certificates-17.8pkg:apk/wolfi/gitlab-cfssl-self-sign-scripts-17.6pkg:apk/wolfi/gitlab-cfssl-self-sign-scripts-17.7pkg:apk/wolfi/gitlab-cfssl-self-sign-scripts-17.8pkg:apk/wolfi/gitlab-cng-17.6pkg:apk/wolfi/gitlab-cng-17.7pkg:apk/wolfi/gitlab-cng-17.8pkg:apk/wolfi/gitlab-container-registry-17.6pkg:apk/wolfi/gitlab-container-registry-17.7pkg:apk/wolfi/gitlab-container-registry-17.8pkg:apk/wolfi/gitlab-container-registry-compat-17.6pkg:apk/wolfi/gitlab-container-registry-compat-17.7pkg:apk/wolfi/gitlab-container-registry-compat-17.8pkg:apk/wolfi/gitlab-container-registry-scripts-17.6pkg:apk/wolfi/gitlab-container-registry-scripts-17.7pkg:apk/wolfi/gitlab-container-registry-scripts-17.8pkg:apk/wolfi/gitlab-elasticsearch-indexer-17.6pkg:apk/wolfi/gitlab-elasticsearch-indexer-17.7pkg:apk/wolfi/gitlab-elasticsearch-indexer-17.8pkg:apk/wolfi/gitlab-elasticsearch-indexer-compat-17.6pkg:apk/wolfi/gitlab-elasticsearch-indexer-compat-17.7pkg:apk/wolfi/gitlab-elasticsearch-indexer-compat-17.8pkg:apk/wolfi/gitlab-exporter-17.6pkg:apk/wolfi/gitlab-exporter-17.7pkg:apk/wolfi/gitlab-exporter-17.8pkg:apk/wolfi/gitlab-exporter-scripts-17.6pkg:apk/wolfi/gitlab-exporter-scripts-17.7pkg:apk/wolfi/gitlab-exporter-scripts-17.8pkg:apk/wolfi/gitlab-geo-logcursor-scripts-17.6pkg:apk/wolfi/gitlab-geo-logcursor-scripts-17.7pkg:apk/wolfi/gitlab-geo-logcursor-scripts-17.8pkg:apk/wolfi/gitlab-gitaly-scripts-17.6pkg:apk/wolfi/gitlab-gitaly-scripts-17.7pkg:apk/wolfi/gitlab-gitaly-scripts-17.8pkg:apk/wolfi/gitlab-logger-17.6pkg:apk/wolfi/gitlab-logger-17.7pkg:apk/wolfi/gitlab-logger-17.8pkg:apk/wolfi/gitlab-logger-compat-17.6pkg:apk/wolfi/gitlab-logger-compat-17.7pkg:apk/wolfi/gitlab-logger-compat-17.8pkg:apk/wolfi/gitlab-mailroom-17.6pkg:apk/wolfi/gitlab-mailroom-17.7pkg:apk/wolfi/gitlab-mailroom-17.8pkg:apk/wolfi/gitlab-mailroom-scripts-17.6pkg:apk/wolfi/gitlab-mailroom-scripts-17.7pkg:apk/wolfi/gitlab-mailroom-scripts-17.8pkg:apk/wolfi/gitlab-pages-17.6pkg:apk/wolfi/gitlab-pages-17.7pkg:apk/wolfi/gitlab-pages-17.8pkg:apk/wolfi/gitlab-pages-compat-17.6pkg:apk/wolfi/gitlab-pages-compat-17.7pkg:apk/wolfi/gitlab-pages-compat-17.8pkg:apk/wolfi/gitlab-pages-scripts-17.6pkg:apk/wolfi/gitlab-pages-scripts-17.7pkg:apk/wolfi/gitlab-pages-scripts-17.8pkg:apk/wolfi/gitlab-rails-scripts-17.6pkg:apk/wolfi/gitlab-rails-scripts-17.7pkg:apk/wolfi/gitlab-rails-scripts-17.8pkg:apk/wolfi/gitlab-shell-17.6pkg:apk/wolfi/gitlab-shell-17.7pkg:apk/wolfi/gitlab-shell-17.8pkg:apk/wolfi/gitlab-shell-scripts-17.6pkg:apk/wolfi/gitlab-shell-scripts-17.7pkg:apk/wolfi/gitlab-shell-scripts-17.8pkg:apk/wolfi/gitlab-shell-scripts-compat-17.6pkg:apk/wolfi/gitlab-shell-scripts-compat-17.7pkg:apk/wolfi/gitlab-shell-scripts-compat-17.8pkg:apk/wolfi/gitlab-sidekiq-scripts-17.6pkg:apk/wolfi/gitlab-sidekiq-scripts-17.7pkg:apk/wolfi/gitlab-sidekiq-scripts-17.8pkg:apk/wolfi/gitlab-toolbox-scripts-17.6pkg:apk/wolfi/gitlab-toolbox-scripts-17.7pkg:apk/wolfi/gitlab-toolbox-scripts-17.8pkg:apk/wolfi/gitlab-webservice-config-17.6pkg:apk/wolfi/gitlab-webservice-config-17.7pkg:apk/wolfi/gitlab-webservice-config-17.8pkg:apk/wolfi/gitlab-webservice-scripts-17.6pkg:apk/wolfi/gitlab-webservice-scripts-17.7pkg:apk/wolfi/gitlab-webservice-scripts-17.8pkg:apk/wolfi/gitlab-workhorse-scripts-17.6pkg:apk/wolfi/gitlab-workhorse-scripts-17.7pkg:apk/wolfi/gitlab-workhorse-scripts-17.8pkg:bitnami/gitlab
< 17.6.5-r0+ 233 more
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.8.3-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.7.5-r0
- (no CPE)range: < 17.8.3-r0
- (no CPE)range: < 17.7.5-r0
- (no CPE)range: < 17.8.3-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.7-r2
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.7.5-r0
- (no CPE)range: < 17.8.3-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.7-r2
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.7-r2
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.8.3-r0
- (no CPE)range: < 17.8.3-r0
- (no CPE)range: < 17.8.3-r0
- (no CPE)range: < 17.8.3-r0
- (no CPE)range: < 17.8.3-r0
- (no CPE)range: < 17.8.3-r0
- (no CPE)range: < 17.8.3-r0
- (no CPE)range: < 17.8.3-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: < 17.6.5-r0
- (no CPE)range: < 17.7.4-r0
- (no CPE)range: < 17.8.2-r0
- (no CPE)range: >= 13.3.0, < 17.8.2
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2- hackerone.com/reports/2930243mitretechnical-descriptionexploitpermissions-required
- gitlab.com/gitlab-org/gitlab/-/issues/512603mitreissue-trackingpermissions-required
News mentions
1- GitLab Patch Release: 17.8.2, 17.7.4, 17.6.5GitLab Security Releases · Feb 12, 2025