CVE-2024-8177 — Vulnetix

CVE-2024-8177 PUBLISHED

An issue was discovered in GitLab CE/EE affecting all versions starting from 15.6 prior to 17.4.5, starting from 17.5 prior to 17.5.3, starting from 17.6 prior to 17.6.1 which could cause Denial of Service via integrating a malicious harbor registry.

EPSS 0.09% · 26.1th percentile

Risk Scores

EPSS Score

0.09%

26.1th percentile

Affected Products

Vendor	Product	Versions
Bitnami	gitlab	17.5.0, 15.6.0, 17.6.0
Bitnami	gitlab	17.5.0, 17.6.0, 15.6.0

Timeline

Jan 21, 1970 Security Advisory
Nov 26, 2024 PoC Published
Nov 26, 2024 CVE Published
Nov 26, 2024 PoC Published
Nov 26, 2024 CVE Updated
Nov 27, 2024 EPSS Score
Dec 15, 2024 EPSS Score
Jan 1, 2025 EPSS Score
Jan 18, 2025 EPSS Score
Feb 5, 2025 EPSS Score
Feb 22, 2025 EPSS Score
Mar 11, 2025 EPSS Score

References

https://gitlab.com/gitlab-org/gitlab/-/issues/480706 url
https://hackerone.com/reports/2637996 url
https://nvd.nist.gov/vuln/detail/CVE-2024-8177 url

Open in Interactive Console →