An issue has been discovered in GitLab EE affecting all versions starting from 14.2 before 15.9.6, all versions starting from 15.10 before 15.10.5, all versions starting from 15.11 before 15.11.1. Lack of verification on RelayState parameter allowed a maliciously crafted URL to obtain access tokens granted for 3rd party Group SAML SSO logins. This feature isn't enabled by default.
References
Link | Resource |
---|---|
https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-1965.json | Third Party Advisory |
https://gitlab.com/gitlab-org/gitlab/-/issues/406235 | Broken Link |
https://hackerone.com/reports/1923672 | Permissions Required |
Configurations
Configuration 1 (hide)
|
History
09 May 2023, 20:36
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:* | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 6.5 |
References | (CONFIRM) https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-1965.json - Third Party Advisory | |
References | (MISC) https://hackerone.com/reports/1923672 - Permissions Required | |
References | (MISC) https://gitlab.com/gitlab-org/gitlab/-/issues/406235 - Broken Link | |
CWE | CWE-352 | |
First Time |
Gitlab
Gitlab gitlab |
03 May 2023, 21:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-05-03 21:15
Updated : 2023-12-10 15:01
NVD link : CVE-2023-1965
Mitre link : CVE-2023-1965
CVE.ORG link : CVE-2023-1965
JSON object : View
Products Affected
gitlab
- gitlab
CWE
CWE-352
Cross-Site Request Forgery (CSRF)