CVE search results

341 – 350 of 1520 results

Detailed view

Sort by:

CVE-2024-3727

Medium priority

Needs evaluation

A flaw was found in the github.com/containers/image library. This flaw allows attackers to trigger unexpected authenticated registry accesses on behalf of a victim user, causing resource exhaustion, local path traversal, and other attacks.

1 affected package

golang-github-opencontainers-go-digest

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
golang-github-opencontainers-go-digest	Needs evaluation	Needs evaluation	Needs evaluation	Needs evaluation

CVE-2024-2651

Medium priority

Ignored

An issue has been discovered in GitLab CE/EE affecting all versions before 16.9.7, all versions starting from 16.10 before 16.10.5, all versions starting from 16.11 before 16.11.2. It was possible for an attacker to cause a denial...

1 affected package

gitlab

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
gitlab	Not in release	Not in release	Not in release	—

CVE-2024-2454

Medium priority

Ignored

An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.11 prior to 16.9.7, starting from 16.10 prior to 16.10.5, and starting from 16.11 prior to 16.11.2. The pins endpoint is susceptible to DoS...

1 affected package

gitlab

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
gitlab	Not in release	Not in release	Not in release	—

CVE-2023-6688

Medium priority

Ignored

An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.11 prior to 16.11.2. A problem with the processing logic for Google Chat Messages integration may lead to a regular expression DoS attack on the server.

1 affected package

gitlab

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
gitlab	Not in release	Not in release	Not in release	—

CVE-2023-6682

Medium priority

Ignored

An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.9 prior to 16.9.7, starting from 16.10 prior to 16.10.5, and starting from 16.11 prior to 16.11.2. A problem with the processing logic for...

1 affected package

gitlab

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
gitlab	Not in release	Not in release	Not in release	—

CVE-2024-3661

High priority

Ignored

DHCP can add routes to a client’s routing table via the classless static route option (121). VPN-based security solutions that rely on routes to redirect traffic can be forced to leak traffic over the physical interface. An...

29 affected packages

tinc, vpnc, connman, gadmin-openvpn-client, gadmin-openvpn-server...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
tinc	Ignored	Ignored	Ignored	Ignored
vpnc	Ignored	Ignored	Ignored	Ignored
connman	Ignored	Ignored	Ignored	Ignored
gadmin-openvpn-client	Not in release	Not in release	Ignored	Ignored
gadmin-openvpn-server	Not in release	Not in release	Ignored	Ignored
golang-github-apparentlymart-go-openvpn-mgmt	Ignored	Ignored	Ignored	—
kvpnc	Not in release	Not in release	Not in release	Ignored
libreswan	Ignored	Ignored	Ignored	Ignored
mozillavpn	Not in release	Ignored	Not in release	—
n2n	Ignored	Ignored	Ignored	Ignored
network-manager-fortisslvpn	Ignored	Ignored	Ignored	Ignored
network-manager-iodine	Ignored	Ignored	Ignored	Ignored
network-manager-l2tp	Ignored	Ignored	Ignored	Ignored
network-manager-openconnect	Ignored	Ignored	Ignored	Ignored
network-manager-openvpn	Ignored	Ignored	Ignored	Ignored
network-manager-pptp	Ignored	Ignored	Ignored	Ignored
network-manager-sstp	Ignored	Ignored	Not in release	—
network-manager-strongswan	Ignored	Ignored	Ignored	Ignored
network-manager-vpnc	Ignored	Ignored	Ignored	Ignored
openconnect	Ignored	Ignored	Ignored	Ignored
openfortivpn	Ignored	Ignored	Ignored	Ignored
openvpn	Ignored	Ignored	Ignored	Ignored
pptp-linux	Ignored	Ignored	Ignored	Ignored
pptpd	Not in release	Ignored	Ignored	Ignored
quicktun	Ignored	Ignored	Ignored	Ignored
riseup-vpn	Ignored	Not in release	Not in release	—
softether-vpn	Ignored	Ignored	Not in release	—
sshuttle	Ignored	Ignored	Ignored	Ignored
wireguard	Ignored	Ignored	Ignored	Ignored

CVE-2024-4024

Medium priority

Needs evaluation

An issue has been discovered in GitLab CE/EE affecting all versions starting from 7.8 before 16.9.6, all versions starting from 16.10 before 16.10.4, all versions starting from 16.11 before 16.11.1. Under certain conditions, an...

2 affected packages

gitlab, gitlab-agent

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
gitlab	Not in release	Not in release	Not in release	—
gitlab-agent	Needs evaluation	Not in release	Not in release	—

CVE-2024-4006

Medium priority

Needs evaluation

An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.7 before 16.9.6, all versions starting from 16.10 before 16.10.4, all versions starting from 16.11 before 16.11.1 where personal access scopes...

2 affected packages

gitlab, gitlab-agent

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
gitlab	Not in release	Not in release	Not in release	—
gitlab-agent	Needs evaluation	Not in release	Not in release	—

CVE-2024-2829

Medium priority

Needs evaluation

An issue has been discovered in GitLab CE/EE affecting all versions starting from 12.5 before 16.9.6, all versions starting from 16.10 before 16.10.4, all versions starting from 16.11 before 16.11.1. A crafted wildcard filter in...

2 affected packages

gitlab, gitlab-agent

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
gitlab	Not in release	Not in release	Not in release	—
gitlab-agent	Needs evaluation	Not in release	Not in release	—

CVE-2024-2434

Medium priority

Needs evaluation

An issue has been discovered in GitLab affecting all versions of GitLab CE/EE 16.9 prior to 16.9.6, 16.10 prior to 16.10.4, and 16.11 prior to 16.11.1 where path traversal could lead to DoS and restricted file read.

2 affected packages

gitlab, gitlab-agent

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
gitlab	Not in release	Not in release	Not in release	—
gitlab-agent	Needs evaluation	Not in release	Not in release	—

Export to JSON

Results by page:

Search CVE reports