CVE-2023-1279

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Published Sep 1, 2023

Updated: Sep 7, 2023

CWE ID 601

CWE ID 138

Summary

CVE-2023-1279 is a vulnerability affecting GitLab versions 4.1 to 16.1.4, 16.2 to 16.2.4, and 16.3 to 16.3.0. An attacker can exploit this issue by creating a malicious URL that redirects users to a different project, potentially leading to unauthorized access or data leakage. This vulnerability poses a significant risk, especially for organizations using the affected GitLab versions. Users are advised to update their instances as soon as possible to mitigate this threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/shRFjt
https://www.cve.org/CVERecord?id=CVE-2023-1279
https://nvd.nist.gov/vuln/detail/CVE-2023-1279

Back to Vulnerability Database

CVE-2023-1279

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations