CVE-2024-1211
published 2025-01-31CVE-2024-1211: An issue has been discovered in GitLab CE/EE affecting all versions starting from 10.6 prior to 16.9.7, starting from 16.10 prior to 16.10.5, and starting from…
PriorityP344high8.8CVSS 3.1
AVNACLPRNUIRSUCHIHAH
EPSS
0.26%
16.7th percentile
An issue has been discovered in GitLab CE/EE affecting all versions starting from 10.6 prior to 16.9.7, starting from 16.10 prior to 16.10.5, and starting from 16.11 prior to 16.11.2 in which cross-site request forgery may have been possible on GitLab instances configured to use JWT as an OmniAuth provider.
Affected
9 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | gitlab | < gitlab 17.3.5-2 (sid) | gitlab 17.3.5-2 (sid) |
| gitlab | gitlab | — | — |
| gitlab | gitlab | >= 10.6 < 16.9.7 | 16.9.7 |
| gitlab | gitlab | >= 10.6.0 < 16.9.7 | 16.9.7 |
| gitlab | gitlab | >= 16.10 < 16.10.5 | 16.10.5 |
| gitlab | gitlab | >= 16.10.0 < 16.10.5 | 16.10.5 |
| gitlab | gitlab | >= 16.11 < 16.11.2 | 16.11.2 |
| gitlab | gitlab | >= 16.11.0 < 16.11.2 | 16.11.2 |
| gitlab | gitlab_ce | — | — |
CVSS provenance
nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
osv8.8HIGH
vendor_debian6.4MEDIUM
vendor_redhat5.5MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GitLab
CVE-2024-1211: An issue has been discovered in GitLab CE/EE affecting all versions starting from 10.6 prior to 16.9.7, starting from 16.10 prior to 16.10.5, and star
vendor_gitlab·2025-01-31·CVSS 6.4
CVE-2024-1211 [MEDIUM] CWE-352 CVE-2024-1211: An issue has been discovered in GitLab CE/EE affecting all versions starting from 10.6 prior to 16.9.7, starting from 16.10 prior to 16.10.5, and star
CVE-2024-1211: An issue has been discovered in GitLab CE/EE affecting all versions starting from 10.6 prior to 16.9.7, starting from 16.10 prior to 16.10.5, and starting from 16.11 prior to 16.11.2 in which cross-site request forgery may have been possible on GitLab instances configured to use JWT as an OmniAuth provider.
Red Hat
kernel: netfilter: nf_tables: reject new basechain after table flag update
vendor_redhat·2024-05-19·CVSS 5.5
CVE-2024-35900 [MEDIUM] kernel: netfilter: nf_tables: reject new basechain after table flag update
kernel: netfilter: nf_tables: reject new basechain after table flag update
In the Linux kernel, the following vulnerability has been resolved:
netfilter: nf_tables: reject new basechain after table flag update
When dormant flag is toggled, hooks are disabled in the commit phase by
iterating over current chains in table (existing and new).
The following configuration allows for an inconsistent state:
add table x
add chain x y { type filter hook input priority 0; }
add table x { flags dormant; }
add chain x w { type filter hook input priority 1; }
which triggers the following warning when trying to unregister chain w
which is already unregistered.
[ 127.322252] WARNING: CPU: 7 PID: 1211 at net/netfilter/core.c:50 1 __nf_unregister_net_hook+0x21a/0x260
[...]
[ 127.322519] Call Trace:
[ 127.3
Debian
CVE-2024-1211: gitlab - An issue has been discovered in GitLab CE/EE affecting all versions starting fro...
vendor_debian·2024·CVSS 6.4
CVE-2024-1211 [MEDIUM] CVE-2024-1211: gitlab - An issue has been discovered in GitLab CE/EE affecting all versions starting fro...
An issue has been discovered in GitLab CE/EE affecting all versions starting from 10.6 prior to 16.9.7, starting from 16.10 prior to 16.10.5, and starting from 16.11 prior to 16.11.2 in which cross-site request forgery may have been possible on GitLab instances configured to use JWT as an OmniAuth provider.
Scope: local
sid: resolved (fixed in 17.3.5-2)
GHSA
GHSA-5xrw-g5h5-j2r6: An issue has been discovered in GitLab CE/EE affecting all versions starting from 10
ghsa_unreviewed·2025-01-31
CVE-2024-1211 [MEDIUM] CWE-352 GHSA-5xrw-g5h5-j2r6: An issue has been discovered in GitLab CE/EE affecting all versions starting from 10
An issue has been discovered in GitLab CE/EE affecting all versions starting from 10.6 prior to 16.9.7, starting from 16.10 prior to 16.10.5, and starting from 16.11 prior to 16.11.2 in which cross-site request forgery may have been possible on GitLab instances configured to use JWT as an OmniAuth provider.
OSV
CVE-2024-1211: An issue has been discovered in GitLab CE/EE affecting all versions starting from 10
osv·2025-01-31·CVSS 8.8
CVE-2024-1211 [HIGH] CVE-2024-1211: An issue has been discovered in GitLab CE/EE affecting all versions starting from 10
An issue has been discovered in GitLab CE/EE affecting all versions starting from 10.6 prior to 16.9.7, starting from 16.10 prior to 16.10.5, and starting from 16.11 prior to 16.11.2 in which cross-site request forgery may have been possible on GitLab instances configured to use JWT as an OmniAuth provider.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2025-01-31
Published