Gitlab Runner vulnerabilities

6 known vulnerabilities affecting gitlab/gitlab_runner.

Total CVEs

6

CISA KEV

0

Public exploits

0

Exploited in wild

0

Severity breakdown

CRITICAL1HIGH4MEDIUM1

Vulnerabilities

Page 1 of 1

CVE-2022-2251HIGHCVSS 8.0v<15.3.5v>=15.4, <15.4.4+1 more2023-01-17

CVE-2022-2251 [MEDIUM] CWE-78 CVE-2022-2251: Improper sanitization of branch names in GitLab Runner affecting all versions prior to 15.3.5, 15.4 Improper sanitization of branch names in GitLab Runner affecting all versions prior to 15.3.5, 15.4 prior to 15.4.4, and 15.5 prior to 15.5.2 allows a user who creates a branch with a specially crafted name and gets another user to trigger a pipeline to execute commands in the runner as that other user.

CVE-2021-39947HIGHCVSS 7.5fixed in 14.3.4≥ 14.4.0, < 14.4.2+4 more2022-06-06

CVE-2021-39947 [MEDIUM] CVE-2021-39947: In specific circumstances, trace file buffers in GitLab Runner versions up to 14.3.4, 14.4 to 14.4.2 In specific circumstances, trace file buffers in GitLab Runner versions up to 14.3.4, 14.4 to 14.4.2, and 14.5 to 14.5.2 would re-use the file descriptor 0 for multiple traces and mix the output of several jobs

CVE-2021-39939MEDIUMCVSS 6.5v>=13.7, <14.3.6v>=14.4, <14.4.4+1 more2021-12-13

CVE-2021-39939 [MEDIUM] CWE-400 CVE-2021-39939: An uncontrolled resource consumption vulnerability in GitLab Runner affecting all versions starting An uncontrolled resource consumption vulnerability in GitLab Runner affecting all versions starting from 13.7 before 14.3.6, all versions starting from 14.4 before 14.4.4, all versions starting from 14.5 before 14.5.2, allows an attacker triggering a job with a specially crafted docker image to exhaust resources on runner manager

CVE-2020-13327HIGHCVSS 7.5v>=13.4.0, <13.4.2v>=13.3.0, <13.3.7+1 more2020-10-22

CVE-2020-13327 [MEDIUM] CVE-2020-13327: An issue has been discovered in GitLab Runner affecting all versions starting from 13.4.0 before 13. An issue has been discovered in GitLab Runner affecting all versions starting from 13.4.0 before 13.4.2, all versions starting from 13.3.0 before 13.3.7, all versions starting from 13.2.0 before 13.2.10. Insecure Runner Configuration in Kubernetes Environments

CVE-2020-13347CRITICALCVSS 9.1v>=12.0.0, <13.2.4v>=13.3.0, <13.3.2+1 more2020-10-07

CVE-2020-13347 [CRITICAL] CWE-22 CVE-2020-13347: A command injection vulnerability was discovered in Gitlab runner versions prior to 13.2.4, 13.3.2 a A command injection vulnerability was discovered in Gitlab runner versions prior to 13.2.4, 13.3.2 and 13.4.1. When the runner is configured on a Windows system with a docker executor, which allows the attacker to run arbitrary commands on Windows host, via DOCKER_AUTH_CONFIG build variable.

CVE-2020-13295HIGHCVSS 8.8v>=1.0, <13.0.12v>=13.1, <13.1.6+1 more2020-08-10

CVE-2020-13295 [MEDIUM] CWE-918 CVE-2020-13295: For GitLab Runner before 13.0.12, 13.1.6, 13.2.3, by replacing dockerd with a malicious server, the For GitLab Runner before 13.0.12, 13.1.6, 13.2.3, by replacing dockerd with a malicious server, the Shared Runner is susceptible to SSRF.