Lucene search
Veracode Vulnerability DatabaseVERACODE:44821HistoryDec 25, 2023 - 10:53 p.m.
Information Exposure
2023-12-2522:53:24
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
12
gitlab
information exposure
vulnerability
feature flag
unauthorized individuals
software
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
AI Score
6.4
Confidence
Low
EPSS
0.001
Percentile
17.0%
gitlab is vulnerable to Information Exposure. The vulnerability is due to super_sidebar_logged_out feature flag. When this feature flag is enabled, it may unintentionally disclose GitLab version metadata to unauthorized individuals.
Related
osv
osv
CVE-2023-5831
2023-11-06 11:15:09
BIT-gitlab-2023-5831
2024-03-06 10:56:04
nvd
nvd
CVE-2023-5831
2023-11-06 11:15:09
cve
cve
CVE-2023-5831
2023-11-06 11:15:09
prion
prion
Default configuration
2023-11-06 11:15:00
vulnrichment
vulnrichment
debiancve
debiancve
CVE-2023-5831
2023-11-06 11:15:09
cvelist
cvelist
nessus
nessus
GitLab 16.0 < 16.3.6 / 16.4 < 16.4.2 / 16.5 < 16.5.1 (CVE-2023-5831)
2023-11-13 00:00:00
FreeBSD : Gitlab -- Vulnerabilities (a612c25f-788a-11ee-8d57-001b217b3468)
2023-11-01 00:00:00
freebsd
freebsd
Gitlab -- Vulnerabilities
2023-10-31 00:00:00
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
AI Score
6.4
Confidence
Low
EPSS
0.001
Percentile
17.0%
Related for VERACODE:44821