vulnerability
FreeBSD: VID-1D651770-F4F5-11EB-BA49-001B217B3468 (CVE-2021-22236): Gitlab -- Gitlab
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:N/AC:L/Au:S/C:P/I:P/A:P) | Aug 3, 2021 | Nov 4, 2022 | Nov 4, 2022 |
Severity
7
CVSS
(AV:N/AC:L/Au:S/C:P/I:P/A:P)
Published
Aug 3, 2021
Added
Nov 4, 2022
Modified
Nov 4, 2022
Description
Due to improper handling of OAuth client IDs, new subscriptions generated OAuth tokens on an incorrect OAuth client application. This vulnerability is present in GitLab CE/EE since version 14.1.
Solution
freebsd-upgrade-package-gitlab-ce
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.