Vulnerability Database

289,784

Total vulnerabilities in the database

CVE-2022-3482

An improper access control issue in GitLab CE/EE affecting all versions from 11.3 prior to 15.3.5, 15.4 prior to 15.4.4, and 15.5 prior to 15.5.2 allowed an unauthorized user to see release names even when releases we set to be restricted to project members only

  • Published: Jan 26, 2023
  • Updated: Apr 14, 2023
  • CVE: CVE-2022-3482
  • Severity: Medium
  • Exploit:

CVSS v3:

  • Severity: Medium
  • Score: 5.3
  • AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

CWEs:

Software From Fixed in
gitlab / gitlab 15.6.0 15.6.0.x
gitlab / gitlab 15.5.0 15.5.5
gitlab / gitlab 11.3.0 15.4.6