CVE-2023-0523 — Vulnetix

CVE-2023-0523 PUBLISHED

An issue has been discovered in GitLab affecting all versions starting from 15.6 before 15.8.5, 15.9 before 15.9.4, and 15.10 before 15.10.1. An XSS was possible via a malicious email address for certain instances.

EPSS 21.35% · 95.8th percentile

Risk Scores

EPSS Score

21.35%

95.8th percentile

Affected Products

Vendor	Product	Versions
Bitnami	gitlab	15.6.0, 15.10.0, 15.9.0
Bitnami	gitlab	15.6.0, 15.9.0, 15.10.0

Timeline

Mar 30, 2023 CVE Published
Apr 6, 2023 EPSS Score
Jun 28, 2023 CVE Updated
Mar 17, 2025 EPSS Score
Mar 19, 2025 EPSS Score
Mar 29, 2025 EPSS Score
Mar 30, 2025 EPSS Score
Apr 6, 2025 EPSS Score
Apr 16, 2025 EPSS Score
Apr 17, 2025 EPSS Score
May 1, 2025 EPSS Score
May 4, 2025 EPSS Score

References

https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-0523.json url
https://gitlab.com/gitlab-org/gitlab/-/issues/389487 url
https://hackerone.com/reports/1842867 url
https://nvd.nist.gov/vuln/detail/CVE-2023-0523 url

Open in Interactive Console →