vulnerability

FreeBSD: VID-1eb4d32c-a245-11ef-998c-2cf05da270f3 (CVE-2024-8180): Gitlab -- vulnerabilities

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:N/AC:M/Au:S/C:P/I:P/A:N)	Nov 14, 2024	Nov 15, 2024	Dec 10, 2025

Severity

CVSS

(AV:N/AC:M/Au:S/C:P/I:P/A:N)

Published

Nov 14, 2024

Added

Nov 15, 2024

Modified

Dec 10, 2025

Description

Gitlab reports: Unauthorized access to Kubernetes cluster agent Device OAuth flow allows for cross window forgery Denial of Service by importing malicious crafted FogBugz import payload Stored XSS through javascript URL in Analytics dashboards HTML injection in vulnerability Code flow could lead to XSS on self hosted instances Information disclosure through an API endpoint

Solutions

freebsd-upgrade-package-gitlab-cefreebsd-upgrade-package-gitlab-ee

References

CVE-2024-8180
https://attackerkb.com/topics/CVE-2024-8180
CWE-79

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today