Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2024-4283

An issue has been discovered in GitLab EE affecting all versions starting from 11.1 before 17.1.7, 17.2 before 17.2.5, and 17.3 before 17.3.2. Under certain conditions an open redirect vulnerability could allow for an account takeover by breaking the OAuth flow.

  • Published: Sep 17, 2024
  • Updated: May 4, 2025
  • CVE: CVE-2024-4283
  • Severity: Medium
  • Exploit:

CVSS v3:

  • Severity: Medium
  • Score: 6.1
  • AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

CWEs:

Software From Fixed in
gitlab / gitlab 17.2.0 17.2.5
gitlab / gitlab 17.3.0 17.3.2
gitlab / gitlab 11.1.0 17.1.7