CVE-2022-0735
published 2022-03-28CVE-2022-0735: An issue has been discovered in GitLab CE/EE affecting all versions starting from 12.10 before 14.6.5, all versions starting from 14.7 before 14.7.4, all…
PriorityP265critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EXPLOIT
EPSS
13.23%
95.9th percentile
An issue has been discovered in GitLab CE/EE affecting all versions starting from 12.10 before 14.6.5, all versions starting from 14.7 before 14.7.4, all versions starting from 14.8 before 14.8.2. An unauthorised user was able to steal runner registration tokens through an information disclosure vulnerability using quick actions commands.
Affected
9 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | gitlab | < gitlab 15.10.8+ds1-2 (sid) | gitlab 15.10.8+ds1-2 (sid) |
| gitlab | gitlab | — | — |
| gitlab | gitlab | — | — |
| gitlab | gitlab | — | — |
| gitlab | gitlab | — | — |
| gitlab | gitlab | >= 12.0 < 14.6.5 | 14.6.5 |
| gitlab | gitlab | >= 14.7 < 14.7.4 | 14.7.4 |
| gitlab | gitlab | >= 14.8 < 14.8.2 | 14.8.2 |
| gitlab | gitlab_ce | — | — |
CVSS provenance
nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
osv9.8CRITICAL
vendor_debian10.0CRITICAL
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-fpgr-mg9w-x2hm: An issue has been discovered in GitLab CE/EE affecting all versions starting from 12
ghsa_unreviewed·2022-03-29
CVE-2022-0735 [CRITICAL] CWE-863 GHSA-fpgr-mg9w-x2hm: An issue has been discovered in GitLab CE/EE affecting all versions starting from 12
An issue has been discovered in GitLab CE/EE affecting all versions starting from 12.10 before 14.6.5, all versions starting from 14.7 before 14.7.4, all versions starting from 14.8 before 14.8.2. An unauthorised user was able to steal runner registration tokens through an information disclosure vulnerability using quick actions commands.
OSV
CVE-2022-0735: An issue has been discovered in GitLab CE/EE affecting all versions starting from 12
osv·2022-03-28·CVSS 9.8
CVE-2022-0735 [CRITICAL] CVE-2022-0735: An issue has been discovered in GitLab CE/EE affecting all versions starting from 12
An issue has been discovered in GitLab CE/EE affecting all versions starting from 12.10 before 14.6.5, all versions starting from 14.7 before 14.7.4, all versions starting from 14.8 before 14.8.2. An unauthorised user was able to steal runner registration tokens through an information disclosure vulnerability using quick actions commands.
GitLab
CVE-2022-0735: An issue has been discovered in GitLab CE/EE affecting all versions starting from 12.10 before 14.6.5, all versions starting from 14.7 before 14.7.4,
vendor_gitlab·2022-03-28·CVSS 10.0
CVE-2022-0735 [CRITICAL] CVE-2022-0735: An issue has been discovered in GitLab CE/EE affecting all versions starting from 12.10 before 14.6.5, all versions starting from 14.7 before 14.7.4,
CVE-2022-0735: An issue has been discovered in GitLab CE/EE affecting all versions starting from 12.10 before 14.6.5, all versions starting from 14.7 before 14.7.4, all versions starting from 14.8 before 14.8.2. An unauthorised user was able to steal runner registration tokens through an information disclosure vulnerability using quick actions commands.
Debian
CVE-2022-0735: gitlab - An issue has been discovered in GitLab CE/EE affecting all versions starting fro...
vendor_debian·2022·CVSS 10.0
CVE-2022-0735 [CRITICAL] CVE-2022-0735: gitlab - An issue has been discovered in GitLab CE/EE affecting all versions starting fro...
An issue has been discovered in GitLab CE/EE affecting all versions starting from 12.10 before 14.6.5, all versions starting from 14.7 before 14.7.4, all versions starting from 14.8 before 14.8.2. An unauthorised user was able to steal runner registration tokens through an information disclosure vulnerability using quick actions commands.
Scope: local
sid: resolved (fixed in 15.10.8+ds1-2)
No detection rules found.
Nuclei
GitLab CE/EE - Information Disclosure
nuclei·CVSS 9.8
CVE-2022-0735 [CRITICAL] GitLab CE/EE - Information Disclosure
GitLab CE/EE - Information Disclosure
GitLab CE/EE is susceptible to information disclosure. An attacker can access runner registration tokens using quick actions commands, thereby making it possible to obtain sensitive information, modify data, and/or execute unauthorized operations. Affected versions are from 12.10 before 14.6.5, from 14.7 before 14.7.4, and from 14.8 before 14.8.2.
Template:
id: CVE-2022-0735
info:
name: GitLab CE/EE - Information Disclosure
author: GitLab Red Team
severity: critical
description: GitLab CE/EE is susceptible to information disclosure. An attacker can access runner registration tokens using quick actions commands, thereby making it possible to obtain sensitive information, modify data, and/or execute unauthorized operations. Affected versions are from
No writeups or analysis indexed.
2022-03-28
Published