Vulnerability Database

290,206

Total vulnerabilities in the database

CVE-2024-1963

An issue has been discovered in GitLab CE/EE affecting all versions starting from 8.4 prior to 16.10.7, starting from 16.11 prior to 16.11.4, and starting from 17.0 prior to 17.0.2. A vulnerability in GitLab's Asana integration allowed an attacker to potentially cause a regular expression denial of service by sending specially crafted requests.

  • Published: Jun 13, 2024
  • Updated: Jul 19, 2024
  • CVE: CVE-2024-1963
  • Severity: Medium
  • Exploit:

CVSS v3:

  • Severity: Medium
  • Score: 6.5
  • AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWEs:

Software From Fixed in
gitlab / gitlab 17.0 17.0.2
gitlab / gitlab 17.0 17.0.2.x
gitlab / gitlab 8.4 16.10.7
gitlab / gitlab 16.11.0 16.11.4