CVE-2022-1680Gitlab vulnerability

6 documents5 sources
Severity
8.8HIGHNVD
EPSS
10.4%
top 6.76%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
GitlabDebian GitlabGitlab EE
Timeline
PublishedJun 6
Latest updateMay 10

Description

An account takeover issue has been discovered in GitLab EE affecting all versions starting from 11.10 before 14.9.5, all versions starting from 14.10 before 14.10.4, all versions starting from 15.0 before 15.0.1. When group SAML SSO is configured, the SCIM feature (available only on Premium+ subscriptions) may allow any owner of a Premium group to invite arbitrary users through their username and email, then change those users' email addresses via SCIM to an attacker controlled email address and

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages5 packages

NVDgitlab/gitlab11.10.014.9.5+2
debiandebian/gitlab< gitlab 15.10.8+ds1-2 (sid)
CVEListV5gitlab/gitlab>=11.0, <14.9.5, >=14.10.0, <14.10.4, >=15.0.0, <15.0.1+2
gitlabgitlab/gitlab

🔴Vulnerability Details

1
GHSA
GHSA-whxf-7mv4-g5wm: An account takeover issue has been discovered in GitLab EE affecting all versions starting from 112022-06-07

📋Vendor Advisories

2
GitLab
CVE-2022-1680: An account takeover issue has been discovered in GitLab EE affecting all versions starting from 11.10 before 14.9.5, all versions starting from 14.102022-06-06
Debian
CVE-2022-1680: gitlab - An account takeover issue has been discovered in GitLab EE affecting all version...2022

🕵️Threat Intelligence

2
Talos
Vulnerability Spotlight: Authentication bypass, use-after-free vulnerabilities found in a library for the µC/OS open-source operating system2023-05-10
Talos
Vulnerability Spotlight: Authentication bypass, use-after-free vulnerabilities found in a library for the µC/OS open-source operating system2023-05-10