CVE-2022-3060 — Vulnetix

Try Vulnetix Request Demo

CVE-2022-3060 PUBLISHED

Improper control of a resource identifier in Error Tracking in GitLab CE/EE affecting all versions from 12.7 allows an authenticated attacker to generate content which could cause a victim to make unintended arbitrary requests

EPSS 0.39% · 59.6th percentile

Risk Scores

EPSS Score

0.39%

59.6th percentile

Affected Products

Vendor	Product	Versions
Bitnami	gitlab	12.7.0, 15.3.0, 15.4.0
Bitnami	gitlab	12.7.0, 15.3.0, 15.4.0

Timeline

Sep 29, 2022 CVE Published
Oct 18, 2022 EPSS Score
Nov 30, 2022 EPSS Score
Dec 12, 2022 CVE Updated
Jan 12, 2023 EPSS Score
Feb 25, 2023 EPSS Score
Mar 7, 2023 EPSS Score
May 22, 2023 EPSS Score
Jul 4, 2023 EPSS Score
Aug 16, 2023 EPSS Score
Sep 29, 2023 EPSS Score
Nov 11, 2023 EPSS Score

References

Open in Interactive Console →