Lucene search
HistoryApr 05, 2023 - 8:15 p.m.
CVE-2023-1733
denial of service
prometheus server
gitlab
versions 11.10 to 15.10.1
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
5.9
Confidence
High
EPSS
0.001
Percentile
40.4%
A denial of service condition exists in the Prometheus server bundled with GitLab affecting all versions from 11.10 to 15.8.5, 15.9 to 15.9.4 and 15.10 to 15.10.1.
Affected configurations
Node
gitlabgitlabRange11.10.0–15.8.5community
ORgitlabgitlabRange11.10.0–15.8.5enterprise
ORgitlabgitlabRange15.9.0–15.9.4community
ORgitlabgitlabRange15.9.0–15.9.4enterprise
ORgitlabgitlabMatch15.10.0community
ORgitlabgitlabMatch15.10.0enterprise
Related
cvelist
cvelist
CVE-2023-1733
2023-04-05 00:00:00
ubuntucve
ubuntucve
CVE-2023-1733
2023-04-05 00:00:00
cve
cve
CVE-2023-1733
2023-04-05 20:15:07
veracode
veracode
Denial Of Service (DoS)
2023-07-23 13:16:44
debiancve
debiancve
CVE-2023-1733
2023-04-05 20:15:07
prion
prion
Design/Logic Flaw
2023-04-05 20:15:00
nessus
nessus
GitLab 11.10 < 15.8.5 / 15.9 < 15.9.4 / 15.10 < 15.10.1 (CVE-2023-1733)
2023-04-04 00:00:00
FreeBSD : Gitlab -- Multiple Vulnerabilities (54006796-cf7b-11ed-a5d5-001b217b3468)
2023-03-31 00:00:00
GitLab < 15.8.5 (SECURITY-RELEASE-GITLAB-15-10-1-RELEASED)
2024-01-03 00:00:00
osv
osv
CVE-2023-1733
2023-04-05 20:15:07
BIT-gitlab-2023-1733
2024-03-06 11:10:38
freebsd
freebsd
Gitlab -- Multiple Vulnerabilities
2023-03-30 00:00:00
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
5.9
Confidence
High
EPSS
0.001
Percentile
40.4%
Related for NVD:CVE-2023-1733