vulnerability

FreeBSD: VID-cc1ac01e-86b0-11ef-9369-2cf05da270f3 (CVE-2024-8977): Gitlab -- vulnerabilities

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
8	(AV:N/AC:M/Au:S/C:C/I:C/A:N)	Oct 10, 2024	Oct 11, 2024	Dec 10, 2025

Severity

CVSS

(AV:N/AC:M/Au:S/C:C/I:C/A:N)

Published

Oct 10, 2024

Added

Oct 11, 2024

Modified

Dec 10, 2025

Description

Gitlab reports: Run pipelines on arbitrary branches An attacker can impersonate arbitrary user SSRF in Analytics Dashboard Viewing diffs of MR with conflicts can be slow HTMLi in OAuth page Deploy Keys can push changes to an archived repository Guests can disclose project templates GitLab instance version disclosed to unauthorized users

Solutions

freebsd-upgrade-package-gitlab-cefreebsd-upgrade-package-gitlab-ee

References

CVE-2024-8977
https://attackerkb.com/topics/CVE-2024-8977
CWE-918

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today