A business logic error in Project Import in GitLab CE/EE versions 14.9 prior to 14.9.2, 14.8 prior to 14.8.5, and 14.0 prior to 14.7.7 under certain conditions caused imported projects to show an incorrect user in the 'Access Granted' column in the project membership pages
References
Link | Resource |
---|---|
https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-1111.json | Vendor Advisory |
https://gitlab.com/gitlab-org/gitlab/-/issues/345236 | Broken Link |
Configurations
Configuration 1 (hide)
|
History
08 Aug 2023, 14:22
Type | Values Removed | Values Added |
---|---|---|
CWE | NVD-CWE-Other |
11 Apr 2022, 19:44
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-668 | |
CVSS |
v2 : v3 : |
v2 : 3.5
v3 : 2.7 |
First Time |
Gitlab
Gitlab gitlab |
|
CPE | cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:* cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:* |
|
References | (MISC) https://gitlab.com/gitlab-org/gitlab/-/issues/345236 - Broken Link | |
References | (CONFIRM) https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-1111.json - Vendor Advisory |
04 Apr 2022, 20:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-04-04 20:15
Updated : 2023-12-10 14:22
NVD link : CVE-2022-1111
Mitre link : CVE-2022-1111
CVE.ORG link : CVE-2022-1111
JSON object : View
Products Affected
gitlab
- gitlab
CWE