Mageni Mageni Security LLC

Free and open-source vulnerability scanner

Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.

Install Now

Available for macOS, Windows, and Linux

App screenshot

GitLab 10.x < 14.7.7, 14.8.x < 14.8.5, 14.9.x < 14.9.2 DoS Vulnerability

Information

Severity

Severity

Medium

Family

Family

Denial of Service

CVSSv2 Base

CVSSv2 Base

6.8

CVSSv2 Vector

CVSSv2 Vector

AV:N/AC:L/Au:S/C:N/I:N/A:C

Solution Type

Solution Type

Vendor Patch

Created

Created

2 years ago

Modified

Modified

2 years ago

Share

Summary

GitLab is prone to a denial of service (DoS) vulnerability.

Insight

Insight

A denial of service vulnerability when rendering RDoc files allows an attacker to crash the GitLab web application with a maliciously crafted RDoc file.

Affected Software

Affected Software

GitLab version 10.x prior to 14.7.7, 14.8.x prior to 14.8.5 and 14.9.x prior to 14.9.2.

Detection Method

Detection Method

Checks if a vulnerable version is present on the target host.

Solution

Solution

Update to version 14.7.7, 14.8.5, 14.9.2 or later.

Common Vulnerabilities and Exposures (CVE)

References