GitLab 11.5 < 15.8.5 / 15.9 < 15.9.4 / 15.10 < 15.10.1 (CVE-2023-1098)

medium Nessus Plugin ID 173807

Language:

Version 1.5 Jan 3, 2024, 4:28 PM Detection (updated detection logic) Plugin metadata Plugin Feed: 202401031628
Version 1.4 May 4, 2023, 6:02 PM IAVM reference Plugin Feed: 202305041802
Version 1.3 Apr 13, 2023, 7:01 PM CVSS metrics ("CVSSv2 score" changed from 4.6 to 6.1. "CVSSv2 score" changed from 4.6 to 6.1. "CVSSv2 score" changed from 4.6 to 6.1. "CVSSv2 score" changed from 4.6 to 6.1. "CVSSv2 score" changed from 4.6 to 6.1. "CVSSv2 score" changed from 4.6 to 6.1. "CVSSv2 vector" changed from "CVSS2#AV:N/AC:H/Au:M/C:C/I:N/A:N" to "CVSS2#AV:N/AC:L/Au:M/C:C/I:N/A:N". "CVSSv3 score" changed from 5.8 to 4.9. "CVSSv3 vector" changed from "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:N" to "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N". "CVSSv2 vector" changed from "CVSS2#AV:N/AC:H/Au:M/C:C/I:N/A:N" to "CVSS2#AV:N/AC:L/Au:M/C:C/I:N/A:N". "CVSSv3 score" changed from 5.8 to 4.9. "CVSSv3 vector" changed from "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:N" to "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N". "CVSSv2 vector" changed from "CVSS2#AV:N/AC:H/Au:M/C:C/I:N/A:N" to "CVSS2#AV:N/AC:L/Au:M/C:C/I:N/A:N". "CVSSv3 score" changed from 5.8 to 4.9. "CVSSv3 vector" changed from "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:N" to "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N". "CVSSv2 vector" changed from "CVSS2#AV:N/AC:H/Au:M/C:C/I:N/A:N" to "CVSS2#AV:N/AC:L/Au:M/C:C/I:N/A:N". "CVSSv3 score" changed from 5.8 to 4.9. "CVSSv3 vector" changed from "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:N" to "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N". "CVSSv2 vector" changed from "CVSS2#AV:N/AC:H/Au:M/C:C/I:N/A:N" to "CVSS2#AV:N/AC:L/Au:M/C:C/I:N/A:N". "CVSSv3 score" changed from 5.8 to 4.9. "CVSSv3 vector" changed from "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:N" to "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N") CVSSv3 score source (set to "CVE-2023-1098") Plugin Feed: 202304131901
Version 1.1 Apr 7, 2023, 10:11 AM IAVM reference STIG Severity (set to "I") Plugin Feed: 202304071011
Version 1.0 Apr 4, 2023, 12:12 PM New Plugin Feed: 202304041212

* Changelogs are generally available for changes made after Nov 1, 2022