| Max CVSS | 7.5 | Min CVSS | 4.0 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2018-3710 | 6.8 |
Gitlab Community and Enterprise Editions version 10.3.3 is vulnerable to an Insecure Temporary File in the project import component resulting remote code execution.
|
28-02-2023 - 18:02 | 21-03-2018 - 20:29 | |
| CVE-2017-0926 | 6.5 |
Gitlab Community Edition version 10.3 is vulnerable to an improper authorization issue in the Oauth sign-in component resulting in unauthorized user login.
|
09-10-2019 - 23:21 | 21-03-2018 - 20:29 | |
| CVE-2017-0916 | 7.5 |
Gitlab Community Edition version 10.3 is vulnerable to a lack of input validation in the system_hook_push queue through web hook component resulting in remote code execution.
|
09-10-2019 - 23:21 | 21-03-2018 - 20:29 | |
| CVE-2017-0918 | 6.5 |
Gitlab Community Edition version 10.3 is vulnerable to a path traversal issue in the GitLab CI runner component resulting in remote code execution.
|
09-10-2019 - 23:21 | 21-03-2018 - 20:29 | |
| CVE-2017-0915 | 7.5 |
Gitlab Community Edition version 10.2.4 is vulnerable to a lack of input validation in the GitlabProjectsImportService resulting in remote code execution.
|
09-10-2019 - 23:21 | 21-03-2018 - 20:29 | |
| CVE-2017-0925 | 4.0 |
Gitlab Enterprise Edition version 10.1.0 is vulnerable to an insufficiently protected credential issue in the project service integration API endpoint resulting in an information disclosure of plaintext password.
|
09-10-2019 - 23:21 | 21-03-2018 - 20:29 | |
| CVE-2017-0917 | 4.3 |
Gitlab Community Edition version 10.2.4 is vulnerable to lack of input validation in the CI job component resulting in persistent cross site scripting.
|
09-10-2019 - 23:21 | 21-03-2018 - 20:29 |