CVE-2023-6051

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Dec 15, 2023

Updated: Jan 2, 2024

CWE ID 94

Summary

CVE-2023-6051 is a vulnerability affecting GitLab CE and EE versions before 16.4.4, as well as certain versions starting from 16.5 and 16.6. This issue puts file integrity at risk when users pull source code or installation packages from a particular tag. Unspecified vulnerabilities in GitLab's package handling may lead to the corruption or modification of files during the installation process. It's crucial for users to update their installations to the latest patched versions as soon as possible to mitigate this threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/tVkrx4
https://www.cve.org/CVERecord?id=CVE-2023-6051
https://nvd.nist.gov/vuln/detail/CVE-2023-6051

Back to Vulnerability Database

CVE-2023-6051

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations