Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2022-2992 — Injection in Gitlab

CWE-74 — Injection CWE-77 — Command Injection CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer7 documents7 sources

Severity

9.9CRITICALNVD

CISA7.8

EPSS

93.7%

top 0.15%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Gitlab Debian Gitlab Gitlab CE

Timeline

PublishedOct 17

Description

A vulnerability in GitLab CE/EE affecting all versions from 11.10 prior to 15.1.6, 15.2 to 15.2.4, 15.3 to 15.3.2 allows an authenticated user to achieve remote code execution via the Import from GitHub API endpoint.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:HExploitability: 3.1 | Impact: 6.0

Affected Packages5 packages

▶NVDgitlab/gitlab11.10 — 15.1.6+2

▶debiandebian/gitlab< gitlab 15.10.8+ds1-2 (sid)

▶CVEListV5gitlab/gitlab>=11.10, <15.1.6, >=15.2, <15.2.4, >=15.3, <15.3.2+2

▶gitlabgitlab/gitlab

▶gitlabgitlab/gitlab_ce

🔴Vulnerability Details

GHSA

GHSA-m7f3-552r-pf23: A vulnerability in GitLab CE/EE affecting all versions from 11↗2022-10-17

▶

OSV

CVE-2022-2992: A vulnerability in GitLab CE/EE affecting all versions from 11↗2022-10-17

▶

💥Exploits & PoCs

Metasploit

GitLab GitHub Repo Import Deserialization RCE↗

▶

📋Vendor Advisories

GitLab

CVE-2022-2992: A vulnerability in GitLab CE/EE affecting all versions from 11.10 prior to 15.1.6, 15.2 to 15.2.4, 15.3 to 15.3.2 allows an authenticated user to achi↗2022-10-17

▶

CISA

Adobe Reader and Acrobat Input Validation Vulnerability↗2022-03-03

▶

Debian

CVE-2022-2992: gitlab - A vulnerability in GitLab CE/EE affecting all versions from 11.10 prior to 15.1....↗2022

▶