CVE-2023-3917

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Sep 29, 2023

Updated: Oct 3, 2023

CWE ID 266

Summary

CVE-2023-3917 is a Denial of Service vulnerability impacting all versions of GitLab EE and CE before 16.2.8, 16.3 prior to 16.3.5, and 16.4 prior to 16.4.1. An attacker can exploit this issue to cause pipelines to fail, leading to disrupted workflows and potential downtime. This vulnerability poses a significant risk for organizations relying on GitLab for their continuous integration and delivery processes, necessitating prompt patching or mitigation efforts.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

TeamCity

Affected Vendors

JetBrains

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sHMN4x
https://www.cve.org/CVERecord?id=CVE-2023-3917
https://nvd.nist.gov/vuln/detail/CVE-2023-3917

Back to Vulnerability Database