CVE-2022-2251
published 2023-01-17CVE-2022-2251: Improper sanitization of branch names in GitLab Runner affecting all versions prior to 15.3.5, 15.4 prior to 15.4.4, and 15.5 prior to 15.5.2 allows a user who…
high8CVSS 3.1
AVNACLPRLUIRSUCHIHAH
Improper sanitization of branch names in GitLab Runner affecting all versions prior to 15.3.5, 15.4 prior to 15.4.4, and 15.5 prior to 15.5.2 allows a user who creates a branch with a specially crafted name and gets another user to trigger a pipeline to execute commands in the runner as that other user.
Affected
9 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | gitlab | < gitlab 15.10.8+ds1-2 (sid) | gitlab 15.10.8+ds1-2 (sid) |
| gitlab | gitlab | — | — |
| gitlab | gitlab_runner | — | — |
| gitlab | gitlab_runner | — | — |
| gitlab | gitlab_runner | — | — |
| gitlab | gitlab_runner | — | — |
| gitlab | runner | < 15.3.5 | 15.3.5 |
| gitlab | runner | >= 15.4.0 < 15.4.4 | 15.4.4 |
| gitlab | runner | >= 15.5.0 < 15.5.2 | 15.5.2 |
CVSS provenance
nvdv3.18.0HIGHCVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
osv8.0HIGH
cisa9.8CRITICAL