CVE-2018-18843

CRITICAL

10.0NVD

The Kubernetes integration in GitLab Enterprise Edition 11.x before 11.2.8, 11.3.x before 11.3.9, and 11.4.x before 11.4.4 has SSRF.

CVSS v3.0 Score

10.0

/ 10.0

CRITICAL

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Information

Published: 4 déc. 2018
Updated: 21 nov. 2024
Status: Modified
Source: cve@mitre.org

Affected products

gitlab gitlab

Versions : 11.2.8, 11.3.9, 11.4.4

Weaknesses (CWE)

CWE-918

References (4)

https://about.gitlab.com/2018/11/01/critical-security-release-gitlab-11-dot-4-dot-4-released/
Vendor Advisory
https://gitlab.com/gitlab-org/gitlab-ce/issues/53158
ExploitIssue TrackingPatchVendor Advisory
https://about.gitlab.com/2018/11/01/critical-security-release-gitlab-11-dot-4-dot-4-released/
Vendor Advisory
https://gitlab.com/gitlab-org/gitlab-ce/issues/53158
ExploitIssue TrackingPatchVendor Advisory

Similar CVEs

Other vulnerabilities of type CWE-918

Loading…

Monitor your products

Get automatic alerts for every new CVE affecting your equipment.

Enable monitoring