CVE-2023-3401
published 2023-08-02CVE-2023-3401: An issue has been discovered in GitLab affecting all versions before 16.0.8, all versions starting from 16.1 before 16.1.3, all versions starting from 16.2…
PriorityP335medium6.5CVSS 3.1
AVNACLPRLUINSUCNIHAN
EPSS
0.50%
38.9th percentile
An issue has been discovered in GitLab affecting all versions before 16.0.8, all versions starting from 16.1 before 16.1.3, all versions starting from 16.2 before 16.2.2. The main branch of a repository with a specially designed name allows an attacker to create repositories with malicious code.
Affected
8 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | gitlab | < gitlab 16.0.8+ds1-1 (sid) | gitlab 16.0.8+ds1-1 (sid) |
| gitlab | gitlab | < 16.0.8 | 16.0.8 |
| gitlab | gitlab | — | — |
| gitlab | gitlab | >= 16.1 < 16.1.3 | 16.1.3 |
| gitlab | gitlab | >= 16.1.0 < 16.1.3 | 16.1.3 |
| gitlab | gitlab | >= 16.2 < 16.2.2 | 16.2.2 |
| gitlab | gitlab | >= 16.2.0 < 16.2.2 | 16.2.2 |
| matrix-org | matrix-js-sdk | >= 0 < 24.1.0 | 24.1.0 |
CVSS provenance
nvdv3.16.5MEDIUMCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
osv6.5MEDIUM
vendor_debian4.8MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GitLab
CVE-2023-3401: An issue has been discovered in GitLab affecting all versions before 16.0.8, all versions starting from 16.1 before 16.1.3, all versions starting from
vendor_gitlab·2023-08-02·CVSS 4.8
CVE-2023-3401 [MEDIUM] CWE-94 CVE-2023-3401: An issue has been discovered in GitLab affecting all versions before 16.0.8, all versions starting from 16.1 before 16.1.3, all versions starting from
CVE-2023-3401: An issue has been discovered in GitLab affecting all versions before 16.0.8, all versions starting from 16.1 before 16.1.3, all versions starting from 16.2 before 16.2.2. The main branch of a repository with a specially designed name allows an attacker to create repositories with malicious code.
Debian
CVE-2023-3401: gitlab - An issue has been discovered in GitLab affecting all versions before 16.0.8, all...
vendor_debian·2023·CVSS 4.8
CVE-2023-3401 [MEDIUM] CVE-2023-3401: gitlab - An issue has been discovered in GitLab affecting all versions before 16.0.8, all...
An issue has been discovered in GitLab affecting all versions before 16.0.8, all versions starting from 16.1 before 16.1.3, all versions starting from 16.2 before 16.2.2. The main branch of a repository with a specially designed name allows an attacker to create repositories with malicious code.
Scope: local
sid: resolved (fixed in 16.0.8+ds1-1)
GHSA
GHSA-722v-49rj-hh57: An issue has been discovered in GitLab affecting all versions before 16
ghsa_unreviewed·2023-08-02
CVE-2023-3401 [MEDIUM] CWE-94 GHSA-722v-49rj-hh57: An issue has been discovered in GitLab affecting all versions before 16
An issue has been discovered in GitLab affecting all versions before 16.0.8, all versions starting from 16.1 before 16.1.3, all versions starting from 16.2 before 16.2.2. The main branch of a repository with a specially designed name allows an attacker to create repositories with malicious code.
OSV
CVE-2023-3401: An issue has been discovered in GitLab affecting all versions before 16
osv·2023-08-02·CVSS 6.5
CVE-2023-3401 [MEDIUM] CVE-2023-3401: An issue has been discovered in GitLab affecting all versions before 16
An issue has been discovered in GitLab affecting all versions before 16.0.8, all versions starting from 16.1 before 16.1.3, all versions starting from 16.2 before 16.2.2. The main branch of a repository with a specially designed name allows an attacker to create repositories with malicious code.
GHSA
matrix-js-sdk vulnerable to invisible eavesdropping in group calls
ghsa·2023-04-14
CVE-2023-29529 [MEDIUM] CWE-862 matrix-js-sdk vulnerable to invisible eavesdropping in group calls
matrix-js-sdk vulnerable to invisible eavesdropping in group calls
### Impact
An attacker present in a room where an [MSC3401](https://github.com/matrix-org/matrix-spec-proposals/pull/3401) group call is taking place can eavesdrop on the video and audio of participants using matrix-js-sdk, without their knowledge. To affected matrix-js-sdk users, the attacker will not appear to be participating in the call.
This attack is possible because matrix-js-sdk's group call implementation accepts incoming direct calls from other users, even if they have not yet declared intent to participate in the group call, as a means of resolving a race condition in call setup. Affected versions do not restrict access to the user's outbound media in this case.
Legacy 1:1 calls are unaffected.
### Workaroun
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2023-08-02
Published