CVE-2021-22167

January 22, 2021

An issue has been discovered in GitLab affecting all versions starting from 12.1. Incorrect headers in specific project page allows attacker to have a temporary read access to the private repository

Summary:

An issue has been discovered in GitLab affecting all versions starting from 12.1. Incorrect headers in specific project page allows attacker to have a temporary read access to the private repository

Reference Links(if available):

  • https://gitlab.com/gitlab-org/cves/-/blob/master/2021/CVE-2021-22167.json
  • https://gitlab.com/gitlab-org/gitlab/-/issues/289944
  • https://hackerone.com/reports/1043480

  • CVSS Score (if available)

    v2: / MEDIUM

    v3: /

    Links to Exploits(if available)

  • Tags: , , , ,

    You may have missed

    hkcert

    Cisco Products Multiple Vulnerabilities

    April 25, 2024
    HIBP Banner 1

    T2 – 94,584 breached accounts

    April 25, 2024
    CISA Logo

    CISA: CISA Releases Three Industrial Control Systems Advisories

    April 25, 2024
    CISA Logo

    CISA: CISA Releases Four Industrial Control Systems Advisories

    April 25, 2024
    CISA Logo

    CISA: Oracle Releases Critical Patch Update Advisory for April 2024

    April 25, 2024