DAST analyzer
by GitLab Inc.
CVEs (3)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2022-4317 | 0.00 | — | 0.01 | Mar 9, 2023 | An issue has been discovered in GitLab DAST analyzer affecting all versions starting from 1.47 before 3.0.51, which sends custom request headers in redirects. | |||
| CVE-2022-3767 | 0.00 | — | 0.01 | Mar 9, 2023 | Missing validation in DAST analyzer affecting all versions from 1.11.0 prior to 3.0.32, allows custom request headers to be sent with every request, regardless of the host. | |||
| CVE-2022-4315 | 0.00 | — | 0.01 | Mar 8, 2023 | An issue has been discovered in GitLab DAST analyzer affecting all versions starting from 2.0 before 3.0.55, which sends custom request headers with every request on the authentication page. |
- CVE-2022-4317Mar 9, 2023risk 0.00cvss —epss 0.01
An issue has been discovered in GitLab DAST analyzer affecting all versions starting from 1.47 before 3.0.51, which sends custom request headers in redirects.
- CVE-2022-3767Mar 9, 2023risk 0.00cvss —epss 0.01
Missing validation in DAST analyzer affecting all versions from 1.11.0 prior to 3.0.32, allows custom request headers to be sent with every request, regardless of the host.
- CVE-2022-4315Mar 8, 2023risk 0.00cvss —epss 0.01
An issue has been discovered in GitLab DAST analyzer affecting all versions starting from 2.0 before 3.0.55, which sends custom request headers with every request on the authentication page.