Improper neutralization of input in Jira integration configuration in GitLab CE/EE, affecting all versions from 15.10 prior to 16.6.1, 16.5 prior to 16.5.3, and 16.4 prior to 16.4.3 allows attacker to execute javascript in victim's browser.
Metrics
Affected Vendors & Products
References
History
Mon, 02 Dec 2024 18:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Thu, 29 Aug 2024 15:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
CPEs | cpe:2.3:a:gitlab:gitlab:*:*:*:*:*:*:*:* |
MITRE
Status: PUBLISHED
Assigner: GitLab
Published: 2023-12-01T07:01:38.124Z
Updated: 2024-12-02T17:52:29.707Z
Reserved: 2023-11-08T13:01:15.229Z
Link: CVE-2023-6033
Vulnrichment
Updated: 2024-08-02T08:21:17.132Z
NVD
Status : Modified
Published: 2023-12-01T07:15:13.633
Modified: 2024-11-21T08:43:00.893
Link: CVE-2023-6033
Redhat
No data.