Vulnerability Details CVE-2023-2232
An issue has been discovered in GitLab affecting all versions starting from 15.10 before 16.1, leading to a ReDoS vulnerability in the Jira prefix
Exploit prediction scoring system (EPSS) score
EPSS Score 0.018
EPSS Ranking 81.8%
CVSS Severity
CVSS v3 Score 6.5
References
- https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-2232.json
- https://gitlab.com/gitlab-org/gitlab/-/issues/408352
- https://hackerone.com/reports/1934802
- https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-2232.json
- https://gitlab.com/gitlab-org/gitlab/-/issues/408352
- https://hackerone.com/reports/1934802
Products affected by CVE-2023-2232
-
cpe:2.3:a:gitlab:gitlab:15.10
-
cpe:2.3:a:gitlab:gitlab:15.10.0
-
cpe:2.3:a:gitlab:gitlab:15.10.1
-
cpe:2.3:a:gitlab:gitlab:15.10.2
-
cpe:2.3:a:gitlab:gitlab:15.10.3
-
cpe:2.3:a:gitlab:gitlab:15.10.4
-
cpe:2.3:a:gitlab:gitlab:15.10.5
-
cpe:2.3:a:gitlab:gitlab:15.10.6
-
cpe:2.3:a:gitlab:gitlab:15.10.8
-
cpe:2.3:a:gitlab:gitlab:15.11.0
-
cpe:2.3:a:gitlab:gitlab:15.11.10
-
cpe:2.3:a:gitlab:gitlab:15.11.11
-
cpe:2.3:a:gitlab:gitlab:15.11.2
-
cpe:2.3:a:gitlab:gitlab:15.11.7
-
cpe:2.3:a:gitlab:gitlab:16.0.0
-
cpe:2.3:a:gitlab:gitlab:16.0.2
-
cpe:2.3:a:gitlab:gitlab:16.0.6
-
cpe:2.3:a:gitlab:gitlab:16.0.7
-
cpe:2.3:a:gitlab:gitlab:16.0.8