VDB

CVE-2021-22205

CVE-2021-22205 PUBLISHED KEV

An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.9. GitLab was not properly validating image files that were passed to a file parser which resulted in a remote command execution.

EPSS 94.47% · 100.0th percentile

Risk Scores

EPSS Score
94.47%
100.0th percentile

Affected Products

VendorProductVersions
Bitnamigitlab11.9.0, 13.9.0, 13.10.0
Bitnamigitlab11.9.0, 13.9.0, 13.10.0

Timeline

  • Apr 23, 2021 CVE Published
  • Apr 27, 2021 EPSS Score
  • Jun 6, 2021 EPSS Score
  • Sep 1, 2021 EPSS Score
  • Nov 2, 2021 EPSS Score
  • Nov 3, 2021 CISA KEV Added
  • Nov 3, 2021 PoC Published
  • Nov 4, 2021 PoC Published
  • Nov 4, 2021 EPSS Score
  • Nov 4, 2021 PoC Published
  • Nov 8, 2021 PoC Published
  • Nov 13, 2021 PoC Published
Open in Interactive Console →
$ Console Community · 100/wk Open console ›