VDB

CVE-2023-3363

CVE-2023-3363 PUBLISHED

An information disclosure issue in Gitlab CE/EE affecting all versions from 13.6 prior to 15.11.10, all versions from 16.0 prior to 16.0.6, all versions from 16.1 prior to 16.1.1, resulted in the Sidekiq log including webhook tokens when the log format was set to `default`.

EPSS 0.02% · 5.0th percentile

Risk Scores

EPSS Score
0.02%
5.0th percentile

Affected Products

VendorProductVersions
Bitnamigitlab13.6.0, 16.0.0, 16.1.0
Bitnamigitlab13.6.0, 16.1.0, 16.0.0

Timeline

  • Jun 29, 2023 CVE Published
  • Jul 14, 2023 EPSS Score
  • Aug 18, 2023 EPSS Score
  • Sep 21, 2023 EPSS Score
  • Oct 26, 2023 EPSS Score
  • Nov 29, 2023 EPSS Score
  • Jan 3, 2024 EPSS Score
  • Feb 6, 2024 EPSS Score
  • Mar 12, 2024 EPSS Score
  • Apr 15, 2024 EPSS Score
  • May 20, 2024 EPSS Score
  • Jun 23, 2024 EPSS Score

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›