CVE-2023-3210

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Sep 1, 2023

CWE ID 400

Summary

CVE-2023-3210 is a denial-of-service vulnerability impacting multiple versions of GitLab, including those from 15.11 to 16.1.5, 16.2 to 16.2.5, and 16.3 to 16.3.1. An authenticated user can exploit this flaw by importing or cloning malicious content, leading to a disruption of service. GitLab urges users to upgrade to the patched versions to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

GitLab

Affected Vendors

GitLab Inc.

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/ro56_P
https://www.cve.org/CVERecord?id=CVE-2023-3210
https://nvd.nist.gov/vuln/detail/CVE-2023-3210

Back to Vulnerability Database