An issue has been discovered... CVE-2022-0090

5.0 AV AC AU C I A
发布: 2022-01-18
修订: 2024-11-21

An issue has been discovered affecting GitLab versions prior to 14.4.5, between 14.5.0 and 14.5.3, and between 14.6.0 and 14.6.1. GitLab is configured in a way that it doesn't ignore replacement references with git sub-commands, allowing a malicious user to spoof the contents of their commits in the UI.

0%
暂无可用Exp或PoC
当前有6条受影响产品信息