6.5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
0.001 Low
EPSS
Percentile
42.1%
Severity: High
Date : 2021-08-10
CVE-ID : CVE-2021-22236 CVE-2021-22237 CVE-2021-22239 CVE-2021-22241
Package : gitlab
Type : multiple issues
Remote : Yes
Link : https://security.archlinux.org/AVG-2251
The package gitlab before version 14.1.2-1 is vulnerable to multiple
issues including cross-site scripting, access restriction bypass and
incorrect calculation.
Upgrade to 14.1.2-1.
The problems have been fixed upstream in version 14.1.2.
None.
Due to improper handling of OAuth client IDs, new subscriptions
generated OAuth tokens on an incorrect OAuth client application. This
vulnerability is present in GitLab CE/EE since version 14.1 before
version 14.1.2.
Under specialized conditions, GitLab may allow a user with an
impersonation token to perform Git actions even if impersonation is
disabled. This vulnerability is present in GitLab versions before
14.1.2.
An unauthorized user was able to insert metadata when creating a new
issue on GitLab 14.0 and later before version 14.1.2.
An issue has been discovered in GitLab affecting all versions starting
from 13.4 and before 14.1.2. It was possible to exploit a stored cross-
site-scripting via a specifically crafted default branch name.
A remote attacker could execute arbitrary JavaScript code through a
crafted branch name, or bypass access restrictions to perform various
actions they are not authorised for.
https://about.gitlab.com/releases/2021/08/03/security-release-gitlab-14-1-2-released/
https://about.gitlab.com/releases/2021/08/03/security-release-gitlab-14-1-2-released/#new-subscriptions-generate-oauth-tokens-on-an-incorrect-oauth-client-application
https://about.gitlab.com/releases/2021/08/03/security-release-gitlab-14-1-2-released/#perform-git-actions-with-an-impersonation-token-even-if-impersonation-is-disabled
https://about.gitlab.com/releases/2021/08/03/security-release-gitlab-14-1-2-released/#unauthorised-user-was-able-to-add-meta-data-upon-issue-creation
https://about.gitlab.com/releases/2021/08/03/security-release-gitlab-14-1-2-released/#stored-xss-in-default-branch-name
https://gitlab.com/gitlab-org/cves/-/blob/master/2021/CVE-2021-22241.json
https://gitlab.com/gitlab-org/gitlab/-/issues/336460
https://hackerone.com/reports/1256777
https://security.archlinux.org/CVE-2021-22236
https://security.archlinux.org/CVE-2021-22237
https://security.archlinux.org/CVE-2021-22239
https://security.archlinux.org/CVE-2021-22241
about.gitlab.com/releases/2021/08/03/security-release-gitlab-14-1-2-released/
about.gitlab.com/releases/2021/08/03/security-release-gitlab-14-1-2-released/#new-subscriptions-generate-oauth-tokens-on-an-incorrect-oauth-client-application
about.gitlab.com/releases/2021/08/03/security-release-gitlab-14-1-2-released/#perform-git-actions-with-an-impersonation-token-even-if-impersonation-is-disabled
about.gitlab.com/releases/2021/08/03/security-release-gitlab-14-1-2-released/#stored-xss-in-default-branch-name
about.gitlab.com/releases/2021/08/03/security-release-gitlab-14-1-2-released/#unauthorised-user-was-able-to-add-meta-data-upon-issue-creation
gitlab.com/gitlab-org/cves/-/blob/master/2021/CVE-2021-22241.json
gitlab.com/gitlab-org/gitlab/-/issues/336460
hackerone.com/reports/1256777
security.archlinux.org/AVG-2251
security.archlinux.org/CVE-2021-22236
security.archlinux.org/CVE-2021-22237
security.archlinux.org/CVE-2021-22239
security.archlinux.org/CVE-2021-22241
6.5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
0.001 Low
EPSS
Percentile
42.1%