Vulnerability Database

308,379

Total vulnerabilities in the database

CVE-2022-2244

An improper authorization vulnerability in GitLab EE/CE affecting all versions from 14.8 prior to 14.10.5, 15.0 prior to 15.0.4, and 15.1 prior to 15.1.1, allows project memebers with reporter role to manage issues in project's error tracking feature.

Published: Jul 1, 2022
Updated: Nov 16, 2025
CVE: CVE-2022-2244
Severity: Low
Exploit:

CVSS v3:

Severity: Low
Score: 4.3
AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

CVSS v2:

Severity: Low
Score: 4
AV:N/AC:L/Au:S/C:N/I:P/A:N

CWEs:

CWE-863

Affected Software
References

Software	From	Fixed in
gitlab / gitlab	15.1.0	15.1.0.x
gitlab / gitlab	15.0.0	15.0.4
gitlab / gitlab	14.8.0	14.10.5

https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-2244.json
https://gitlab.com/gitlab-org/gitlab/-/issues/360666
https://hackerone.com/reports/1619583

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo