VDB
CVE-2023-2620
CVE-2023-2620
PUBLISHED
An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.1 prior to 15.11.10, all versions from 16.0 prior to 16.0.6, all versions from 16.1 prior to 16.1.1. A maintainer could modify a webhook URL to leak masked webhook secrets by manipulating other masked portions. This addresses an incomplete fix for CVE-2023-0838.
EPSS 0.37% · 59.1th percentile
Risk Scores
EPSS Score
0.37%
59.1th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Bitnami | gitlab | 15.1.0, 16.0.0, 16.1.0 |
| Bitnami | gitlab | 15.1.0, 16.0.0, 16.1.0 |
Exploit Intelligence
Timeline
- Jun 29, 2023 CVE Published
- Jul 14, 2023 EPSS Score
- Aug 18, 2023 EPSS Score
- Sep 21, 2023 EPSS Score
- Oct 26, 2023 EPSS Score
- Nov 29, 2023 EPSS Score
- Jan 3, 2024 EPSS Score
- Feb 6, 2024 EPSS Score
- Mar 12, 2024 EPSS Score
- Apr 15, 2024 EPSS Score
- May 20, 2024 EPSS Score
- Jun 23, 2024 EPSS Score