CVE-2024-1451
published 2024-02-22CVE-2024-1451: An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.9 before 16.9.1. A crafted payload added to the user profile page could…
PriorityP261high8.7CVSS 3.1
AVNACLPRLUIRSCCHIHAN
EPSS
51.47%
98.8th percentile
An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.9 before 16.9.1. A crafted payload added to the user profile page could lead to a stored XSS on the client side, allowing attackers to perform arbitrary actions on behalf of victims."
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | gitlab | — | — |
| gitlab | gitlab | — | — |
| gitlab | gitlab | — | — |
| gitlab | gitlab | >= 16.9.0 < 16.9.1 | 16.9.1 |
| gitlab | gitlab_ce | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Stored XSS payload injected via the GitLab user profile page; inspect user profile fields for unsanitized script content ↗
- ·Vulnerability affects GitLab CE/EE versions starting from 16.9 up to (but not including) 16.9.1; only instances running exactly 16.9 are affected ↗
- ·Debian has marked this CVE as resolved in the 'sid' (unstable) track; scope is listed as local ↗
CVSS provenance
nvdv3.18.7HIGHCVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N
osv8.7HIGH
vendor_debian8.7LOW
vendor_redhat5.5MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-xxcc-244v-rj6x: An issue has been discovered in GitLab CE/EE affecting all versions starting from 16
ghsa_unreviewed·2024-02-22
CVE-2024-1451 [HIGH] CWE-79 GHSA-xxcc-244v-rj6x: An issue has been discovered in GitLab CE/EE affecting all versions starting from 16
An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.9 before 16.9.1. A crafted payload added to the user profile page could lead to a stored XSS on the client side, allowing attackers to perform arbitrary actions on behalf of victims."
OSV
CVE-2024-1451: An issue has been discovered in GitLab CE/EE affecting all versions starting from 16
osv·2024-02-22·CVSS 8.7
CVE-2024-1451 [HIGH] CVE-2024-1451: An issue has been discovered in GitLab CE/EE affecting all versions starting from 16
An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.9 before 16.9.1. A crafted payload added to the user profile page could lead to a stored XSS on the client side, allowing attackers to perform arbitrary actions on behalf of victims."
Red Hat
kernel: virtio_net: Fix napi_skb_cache_put warning
vendor_redhat·2024-08-17·CVSS 5.5
CVE-2024-43835 [MEDIUM] CWE-667 kernel: virtio_net: Fix napi_skb_cache_put warning
kernel: virtio_net: Fix napi_skb_cache_put warning
In the Linux kernel, the following vulnerability has been resolved:
virtio_net: Fix napi_skb_cache_put warning
After the commit bdacf3e34945 ("net: Use nested-BH locking for
napi_alloc_cache.") was merged, the following warning began to appear:
WARNING: CPU: 5 PID: 1 at net/core/skbuff.c:1451 napi_skb_cache_put+0x82/0x4b0
__warn+0x12f/0x340
napi_skb_cache_put+0x82/0x4b0
napi_skb_cache_put+0x82/0x4b0
report_bug+0x165/0x370
handle_bug+0x3d/0x80
exc_invalid_op+0x1a/0x50
asm_exc_invalid_op+0x1a/0x20
__free_old_xmit+0x1c8/0x510
napi_skb_cache_put+0x82/0x4b0
__free_old_xmit+0x1c8/0x510
__free_old_xmit+0x1c8/0x510
__pfx___free_old_xmit+0x10/0x10
The issue arises because virtio is assuming it's running in NAPI context
even when it's not, such as
Red Hat
kernel: HID: core: remove unnecessary WARN_ON() in implement()
vendor_redhat·2024-07-12·CVSS 5.5
CVE-2024-39509 [MEDIUM] kernel: HID: core: remove unnecessary WARN_ON() in implement()
kernel: HID: core: remove unnecessary WARN_ON() in implement()
In the Linux kernel, the following vulnerability has been resolved:
HID: core: remove unnecessary WARN_ON() in implement()
Syzkaller hit a warning [1] in a call to implement() when trying
to write a value into a field of smaller size in an output report.
Since implement() already has a warn message printed out with the
help of hid_warn() and value in question gets trimmed with:
...
value &= m;
...
WARN_ON may be considered superfluous. Remove it to suppress future
syzkaller triggers.
[1]
WARNING: CPU: 0 PID: 5084 at drivers/hid/hid-core.c:1451 implement drivers/hid/hid-core.c:1451 [inline]
WARNING: CPU: 0 PID: 5084 at drivers/hid/hid-core.c:1451 hid_output_report+0x548/0x760 drivers/hid/hid-core.c:1863
Modules linked in:
CPU:
GitLab
CVE-2024-1451: An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.9 before 16.9.1. A crafted payload added to the user profile pag
vendor_gitlab·2024-02-22·CVSS 8.7
CVE-2024-1451 [HIGH] CWE-79 CVE-2024-1451: An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.9 before 16.9.1. A crafted payload added to the user profile pag
CVE-2024-1451: An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.9 before 16.9.1. A crafted payload added to the user profile page could lead to a stored XSS on the client side, allowing attackers to perform arbitrary actions on behalf of victims."
Debian
CVE-2024-1451: gitlab - An issue has been discovered in GitLab CE/EE affecting all versions starting fro...
vendor_debian·2024·CVSS 8.7
CVE-2024-1451 [HIGH] CVE-2024-1451: gitlab - An issue has been discovered in GitLab CE/EE affecting all versions starting fro...
An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.9 before 16.9.1. A crafted payload added to the user profile page could lead to a stored XSS on the client side, allowing attackers to perform arbitrary actions on behalf of victims."
Scope: local
sid: resolved
No detection rules found.
No public exploits indexed.
2024-02-22
Published