CVE-2022-4317
Severity
6.1MEDIUM
EPSS
0.3%
top 45.80%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedMar 9
Description
An issue has been discovered in GitLab DAST analyzer affecting all versions starting from 1.47 before 3.0.51, which sends custom request headers in redirects.
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:NExploitability: 3.1 | Impact: 1.4
Affected Packages2 packages
🔴Vulnerability Details
2📋Vendor Advisories
1GitLab▶
CVE-2022-4317: An issue has been discovered in GitLab DAST analyzer affecting all versions starting from 1.47 before 3.0.51, which sends custom request headers in re↗2023-03-09