CVE-2024-8635 - GitLab SSRF

1 month ago 17

ARTICLE AD BOX

CVE ID : CVE-2024-8635
Published : Sept. 12, 2024, 5:15 p.m. | 24 minutes ago
Description : A server-side request forgery issue has been discovered in GitLab EE affecting all versions starting from 16.8 prior to 17.1.7, from 17.2 prior to 17.2.5, and from 17.3 prior to 17.3.2. It was possible for an attacker to make requests to internal resources using a custom Maven Dependency Proxy URL
Severity: 7.7 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Read Entire Article

CVE-2024-8635 - GitLab SSRF

ARTICLE AD BOX

Related

CVE-2024-43577 - Microsoft Edge (Chromium-based) Session Hij...

CVE-2024-29213 - Ivanti DSM Local Privilege Escalation Vulne...

CVE-2024-29821 - Ivanti DSM Escalation of Privilege Vulnerab...

Trending

Popular

CVE-2024-6343 - Zyxel ATP, USG FLEX, USG FLEX 50(W), USG20(W...

CVE-2024-5053 - Fluent Forms Mailchimp API Key Update Weakne...

CVE-2024-8367 - HM Courts & Tribunals Service Probate Back O...

CVE-2024-44946 - Linux KCM kcm_sendmsg() UAF

CVE-2024-8368 - "Code-projects Hospital Management System SQ...