Gitlab Enterprise Edition vulnerabilities
2 known vulnerabilities affecting gitlab/gitlab_enterprise_edition.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2013-4583HIGHCVSS 8.8vbefore 6.2.12020-01-28
CVE-2013-4583 [HIGH] CWE-269 CVE-2013-4583: The parse_cmd function in lib/gitlab_shell.rb in GitLab 5.0 before 5.4.2, Community Edition before 6
The parse_cmd function in lib/gitlab_shell.rb in GitLab 5.0 before 5.4.2, Community Edition before 6.2.4, and Enterprise Edition before 6.2.1 and gitlab-shell before 1.7.8 allows remote authenticated users to gain privileges and clone arbitrary repositories.
cvelistv5nvd
CVE-2013-4582MEDIUMCVSS 6.5vbefore 6.2.12020-01-28
CVE-2013-4582 [MEDIUM] CWE-829 CVE-2013-4582: The (1) create_branch, (2) create_tag, (3) import_project, and (4) fork_project functions in lib/git
The (1) create_branch, (2) create_tag, (3) import_project, and (4) fork_project functions in lib/gitlab_projects.rb in GitLab 5.0 before 5.4.2, Community Edition before 6.2.4, Enterprise Edition before 6.2.1 and gitlab-shell before 1.7.8 allows remote authenticated users to include information from local files into the metadata of a Git repository via
cvelistv5nvd