CVE-2024-0231
LOWDescription
A resource misdirection vulnerability in GitLab CE/EE versions 12.0 prior to 17.0.5, 17.1 prior to 17.1.3, and 17.2 prior to 17.2.1 allows an attacker to craft a repository import in such a way as to misdirect commits.
CVSS v3.1 Score
Weakness Type (CWE)
Affected Products
| Vendor | Product |
|---|---|
| gitlab | gitlab |
| gitlab | gitlab |
| gitlab | gitlab |
| gitlab | gitlab |
| gitlab | gitlab |
| gitlab | gitlab |
References
Frequently Asked Questions
What is CVE-2024-0231? +
How severe is CVE-2024-0231? +
What products are affected by CVE-2024-0231? +
How do I check if I'm vulnerable to CVE-2024-0231? +
Related Vulnerabilities
A vulnerability in the Poly Lens Desktop application running on the Windows platform might allow modifications to the filesystem, which …
DataSourceResource.java in the SpagoBI API support in Knowage Server in KNOWAGE before 8.1.30 does not ensure that java:comp/env/jdbc/ occurs at …
Overview The product receives input from an upstream component, but it does not restrict or incorrectly restricts the input before …
Port manipulation vulnerabilities in ASPECT provide attackers with the ability to con-trol TCP/IP port access if session administrator credentials become …
The product receives input from an upstream component, but it does not restrict or incorrectly restricts the input before it …
A flaw was found in FFmpeg's DASH playlist support. This vulnerability allows arbitrary HTTP GET requests to be made on …