CVE-2024-1347
published 2024-04-25CVE-2024-1347: An issue has been discovered in GitLab CE/EE affecting all versions before 16.9.6, all versions starting from 16.10 before 16.10.4, all versions starting from…
PriorityP429medium5.3CVSS 3.1
AVNACLPRNUINSUCNILAN
EPSS
0.47%
37.2th percentile
An issue has been discovered in GitLab CE/EE affecting all versions before 16.9.6, all versions starting from 16.10 before 16.10.4, all versions starting from 16.11 before 16.11.1. Under certain conditions, an attacker through a crafted email address may be able to bypass domain based restrictions on an instance or a group.
Affected
9 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | gitlab | < gitlab 17.3.5-2 (sid) | gitlab 17.3.5-2 (sid) |
| gitlab | gitlab | < 16.9.6 | 16.9.6 |
| gitlab | gitlab | — | — |
| gitlab | gitlab | — | — |
| gitlab | gitlab | >= 0.0 < 16.9.6 | 16.9.6 |
| gitlab | gitlab | >= 16.10 < 16.10.4 | 16.10.4 |
| gitlab | gitlab | >= 16.10.0 < 16.10.4 | 16.10.4 |
| gitlab | gitlab | >= 16.11 < 16.11.1 | 16.11.1 |
| gitlab | gitlab_ce | — | — |
CVSS provenance
nvdv3.15.3MEDIUMCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
osv5.3MEDIUM
vendor_redhat5.5MEDIUM
vendor_debian4.3MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
kernel: Bluetooth: ISO: Check socket flag instead of hcon
vendor_redhat·2024-07-30·CVSS 5.5
CVE-2024-42141 [MEDIUM] kernel: Bluetooth: ISO: Check socket flag instead of hcon
kernel: Bluetooth: ISO: Check socket flag instead of hcon
In the Linux kernel, the following vulnerability has been resolved:
Bluetooth: ISO: Check socket flag instead of hcon
This fixes the following Smatch static checker warning:
net/bluetooth/iso.c:1364 iso_sock_recvmsg()
error: we previously assumed 'pi->conn->hcon' could be null (line 1359)
net/bluetooth/iso.c
1347 static int iso_sock_recvmsg(struct socket *sock, struct msghdr *msg,
1348 size_t len, int flags)
1349 {
1350 struct sock *sk = sock->sk;
1351 struct iso_pinfo *pi = iso_pi(sk);
1352
1353 BT_DBG("sk %p", sk);
1354
1355 if (test_and_clear_bit(BT_SK_DEFER_SETUP,
&bt_sk(sk)->flags)) {
1356 lock_sock(sk);
1357 switch (sk->sk_state) {
1358 case BT_CONNECT2:
1359 if (pi->conn->hcon &&
^^^^^^^^^^^^^^ If ->hcon is NULL
1360 test_bi
Red Hat
gitlab: bypass domain based restrictions on an instance or a group by a crafted email
vendor_redhat·2024-04-25·CVSS 4.3
CVE-2024-1347 [MEDIUM] CWE-287 gitlab: bypass domain based restrictions on an instance or a group by a crafted email
gitlab: bypass domain based restrictions on an instance or a group by a crafted email
An issue has been discovered in GitLab CE/EE affecting all versions before 16.9.6, all versions starting from 16.10 before 16.10.4, all versions starting from 16.11 before 16.11.1. Under certain conditions, an attacker through a crafted email address may be able to bypass domain based restrictions on an instance or a group.
A flaw was found in GitLab CE/EE. Under certain conditions, an attacker, through a crafted email address, can bypass domain-based restrictions on an instance or a group. This issue affects all versions through 16.9.6, 16.10 through 16.10.4, and 16.11 through 16.11.1.
Package: openshift4/ose-console (Red Hat OpenShift Container Platform 4) - Will not fix
GitLab
CVE-2024-1347: An issue has been discovered in GitLab CE/EE affecting all versions before 16.9.6, all versions starting from 16.10 before 16.10.4, all versions start
vendor_gitlab·2024-04-25·CVSS 4.3
CVE-2024-1347 [MEDIUM] CWE-290 CVE-2024-1347: An issue has been discovered in GitLab CE/EE affecting all versions before 16.9.6, all versions starting from 16.10 before 16.10.4, all versions start
CVE-2024-1347: An issue has been discovered in GitLab CE/EE affecting all versions before 16.9.6, all versions starting from 16.10 before 16.10.4, all versions starting from 16.11 before 16.11.1. Under certain conditions, an attacker through a crafted email address may be able to bypass domain based restrictions on an instance or a group.
Debian
CVE-2024-1347: gitlab - An issue has been discovered in GitLab CE/EE affecting all versions before 16.9....
vendor_debian·2024·CVSS 4.3
CVE-2024-1347 [MEDIUM] CVE-2024-1347: gitlab - An issue has been discovered in GitLab CE/EE affecting all versions before 16.9....
An issue has been discovered in GitLab CE/EE affecting all versions before 16.9.6, all versions starting from 16.10 before 16.10.4, all versions starting from 16.11 before 16.11.1. Under certain conditions, an attacker through a crafted email address may be able to bypass domain based restrictions on an instance or a group.
Scope: local
sid: resolved (fixed in 17.3.5-2)
OSV
CVE-2024-1347: An issue has been discovered in GitLab CE/EE affecting all versions before 16
osv·2024-04-25·CVSS 5.3
CVE-2024-1347 [MEDIUM] CVE-2024-1347: An issue has been discovered in GitLab CE/EE affecting all versions before 16
An issue has been discovered in GitLab CE/EE affecting all versions before 16.9.6, all versions starting from 16.10 before 16.10.4, all versions starting from 16.11 before 16.11.1. Under certain conditions, an attacker through a crafted email address may be able to bypass domain based restrictions on an instance or a group.
GHSA
GHSA-2x3p-pww2-fg9r: An issue has been discovered in GitLab CE/EE affecting all versions before 16
ghsa_unreviewed·2024-04-25
CVE-2024-1347 [MEDIUM] CWE-287 GHSA-2x3p-pww2-fg9r: An issue has been discovered in GitLab CE/EE affecting all versions before 16
An issue has been discovered in GitLab CE/EE affecting all versions before 16.9.6, all versions starting from 16.10 before 16.10.4, all versions starting from 16.11 before 16.11.1. Under certain conditions, an attacker through a crafted email address may be able to bypass domain based restrictions on an instance or a group.
Suricata
ET EXPLOIT_KIT DRIVEBY Sednit EK IE Exploit CVE-2013-1347 M1
suricata·2014-10-09·CVSS 8.8
CVE-2013-1347 [HIGH] ET EXPLOIT_KIT DRIVEBY Sednit EK IE Exploit CVE-2013-1347 M1
ET EXPLOIT_KIT DRIVEBY Sednit EK IE Exploit CVE-2013-1347 M1
Rule: alert http $EXTERNAL_NET any -> $HOME_NET any (msg:"ET EXPLOIT_KIT DRIVEBY Sednit EK IE Exploit CVE-2013-1347 M1"; flow:established,to_client; file.data; content:"SharePoint.OpenDocuments.3"; nocase; content:"SharePoint.OpenDocuments.4"; nocase; content:"|3a|ANIMATECOLOR "; nocase; content:"ms-help|3a 2f 2f|"; fast_pattern; nocase; reference:url,www.welivesecurity.com/2014/10/08/sednit-espionage-group-now-using-custom-exploit-kit/; classtype:targeted-activity; sid:2019371; rev:4; metadata:affected_product Any, attack_target Client_Endpoint, created_at 2014_10_09, cve CVE_2013_1347, deployment Perimeter, confidence High, signature_severity Major, tag DriveBy, tag CISA_KEV, updated_at 2024_03_14;)
No public exploits indexed.
No writeups or analysis indexed.
2024-04-25
Published