A Denial of Service (DoS) condition has been discovered in GitLab CE/EE affecting all versions before 16.10.6, version 16.11 before 16.11.3, and 17.0 before 17.0.1. It is possible for an attacker to cause a denial of service using a crafted wiki page.
History

Mon, 16 Dec 2024 15:30:00 +0000

Type Values Removed Values Added
CPEs cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*
cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*
cpe:2.3:a:gitlab:gitlab:17.0.0:*:*:*:community:*:*:*
cpe:2.3:a:gitlab:gitlab:17.0.0:*:*:*:enterprise:*:*:*

Thu, 03 Oct 2024 07:45:00 +0000

Type Values Removed Values Added
Weaknesses CWE-400

Thu, 03 Oct 2024 06:30:00 +0000

Type Values Removed Values Added
Title Uncontrolled Resource Consumption in GitLab Inefficient Regular Expression Complexity in GitLab
Weaknesses CWE-1333

Thu, 29 Aug 2024 15:15:00 +0000

Type Values Removed Values Added
First Time appeared Gitlab
Gitlab gitlab
CPEs cpe:2.3:a:gitlab:gitlab:*:*:*:*:*:*:*:*
Vendors & Products Gitlab
Gitlab gitlab

cve-icon MITRE

Status: PUBLISHED

Assigner: GitLab

Published: 2024-05-23T11:02:31.779Z

Updated: 2024-10-03T06:23:16.789Z

Reserved: 2023-12-04T18:30:29.207Z

Link: CVE-2023-6502

cve-icon Vulnrichment

Updated: 2024-08-02T08:35:13.273Z

cve-icon NVD

Status : Analyzed

Published: 2024-05-23T11:15:22.913

Modified: 2024-12-16T15:02:44.123

Link: CVE-2023-6502

cve-icon Redhat

No data.