VDB
CVE-2024-1947
CVE-2024-1947
PUBLISHED
A denial of service (DoS) condition was discovered in GitLab CE/EE affecting all versions from 13.2.4 before 16.10.6, 16.11 before 16.11.3, and 17.0 before 17.0.1. By leveraging this vulnerability an attacker could create a DoS condition by sending crafted API calls.
EPSS 0.04% · 13.2th percentile
Risk Scores
EPSS Score
0.04%
13.2th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Bitnami | gitlab | 13.2.4, 16.11.0, 17.0.0 |
| Bitnami | gitlab | 13.2.4, 16.11.0, 17.0.0 |
Exploit Intelligence
- CIRCL seen: CVE-2024-1947 (circl-sighting)
- GitLab Issue #443559 (circl)
- https://www.exploit-db.com/exploits/52273 (certbund)
- https://hackerone.com/reports/2380264 (osv)
Timeline
- Jan 21, 1970 Security Advisory
- May 21, 2024 CVE Published
- May 24, 2024 EPSS Score
- Jun 17, 2024 EPSS Score
- Jul 11, 2024 EPSS Score
- Aug 7, 2024 EPSS Score
- Sep 23, 2024 EPSS Score
- Oct 4, 2024 Coalition ESS Score
- Oct 17, 2024 EPSS Score
- Nov 9, 2024 EPSS Score
- Nov 26, 2024 PoC Published
- Dec 4, 2024 EPSS Score