Lucene search

Ubuntu.comUB:CVE-2024-4539

HistoryMay 14, 2024 - 12:00 a.m.

CVE-2024-4539

2024-05-1400:00:00

ubuntu.com

gitlab

security

issue

discovered

4.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

4.5 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.0%

JSON

An issue has been discovered in GitLab CE/EE affecting all versions
starting from 15.4 prior to 16.9.7, starting from 16.10 prior to 16.10.5,
and starting from 16.11 prior to 16.11.2 where abusing the API to filter
branch and tags could lead to Denial of Service.

OSVersionArchitecturePackageVersionFilename
ubuntu16.04noarchgitlab< anyUNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	16.04	noarch	gitlab	< any	UNKNOWN

References

launchpad.net/bugs/cve/CVE-2024-4539

nvd.nist.gov/vuln/detail/CVE-2024-4539

security-tracker.debian.org/tracker/CVE-2024-4539

www.cve.org/CVERecord?id=CVE-2024-4539

4.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

4.5 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.0%

JSON

Related for UB:CVE-2024-4539