CVE-2023-3904

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Dec 15, 2023

Updated: Dec 19, 2023

Summary

CVE-2023-3904 is a vulnerability affecting GitLab Enterprise Edition (EE). Versions prior to 16.4.4, as well as certain versions from the 16.5 and 16.6 series, are all susceptible. This issue allows an attacker to overflow the time spent on an issue, resulting in altered details being displayed on issue boards. This could potentially mislead users and create confusion. Upgrading to the affected versions' patched releases is recommended to mitigate this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/sG8z5X
https://www.cve.org/CVERecord?id=CVE-2023-3904
https://nvd.nist.gov/vuln/detail/CVE-2023-3904

Back to Vulnerability Database

CVE-2023-3904

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations