VDB
CVE-2023-5831
CVE-2023-5831
PUBLISHED
An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.0 before 16.3.6, all versions starting from 16.4 before 16.4.2, and all versions starting from 16.5.0 before 16.5.1 which have the `super_sidebar_logged_out` feature flag enabled. Affected versions with this default-disabled feature flag enabled may unintentionally disclose GitLab version metadata to unauthorized actors.
EPSS 0.08% · 22.8th percentile
Risk Scores
EPSS Score
0.08%
22.8th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Bitnami | gitlab | 16.0.0, 16.4.0, 16.5.0 |
| Bitnami | gitlab | 16.0.0, 16.4.0, 16.5.0 |
Exploit Intelligence
- CIRCL seen: CVE-2023-5831 (circl-sighting)
- GitLab Issue #428919 (circl)
Timeline
- Jan 21, 1970 Security Advisory
- Oct 31, 2023 CVE Published
- Nov 6, 2023 PoC Published
- Nov 7, 2023 EPSS Score
- Dec 7, 2023 EPSS Score
- Jan 7, 2024 EPSS Score
- Feb 6, 2024 EPSS Score
- Mar 8, 2024 EPSS Score
- Apr 7, 2024 EPSS Score
- May 8, 2024 EPSS Score
- Jun 7, 2024 EPSS Score
- Jul 8, 2024 EPSS Score