BIT-gitlab-2023-6386
See a problem?- Import Source
- https://github.com/bitnami/vulndb/tree/main/data/gitlab/BIT-gitlab-2023-6386.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/BIT-gitlab-2023-6386
- Aliases
-
- CVE-2023-6386
- Published
- 2025-02-07T07:28:12.605Z
- Modified
- 2025-02-07T07:59:12.911400Z
- Summary
- [none]
- Details
-
A denial of service vulnerability was identified in GitLab CE/EE, affecting all versions from 15.11 prior to 16.6.7, 16.7 prior to 16.7.5 and 16.8 prior to 16.8.2 which allows an attacker to spike the GitLab instance resource usage resulting in service degradation.
- Database specific
{ "cpes": [ "cpe:2.3:a:gitlab:gitlab:*:*:*:*:*:*:*:*", "cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*" ], "severity": "Medium" }- References
Affected packages
Bitnami / gitlab
Package
- Name
- gitlab
- Purl
- pkg:bitnami/gitlab
Severity
- 6.5 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator