CVE-2023-3363

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2023-3363
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-3363.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2023-3363
Aliases
Related
Published
2023-07-13T03:15:10Z
Modified
2024-10-12T11:27:10.991573Z
Severity
  • 3.8 (Low) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N CVSS Calculator
Summary
[none]
Details

An information disclosure issue in Gitlab CE/EE affecting all versions from 13.6 prior to 15.11.10, all versions from 16.0 prior to 16.0.6, all versions from 16.1 prior to 16.1.1, resulted in the Sidekiq log including webhook tokens when the log format was set to default.

References

Affected packages

Git / gitlab.com/gitlab-org/gitlab

Affected ranges

Type
GIT
Repo
https://gitlab.com/gitlab-org/gitlab
Events
Introduced
280a09dbca836a6eedf5da1e63953fe8da44bf4c
Fixed
1ca31874e42fbd4b99f6e3c9174a992c053c8e1b

Affected versions

v16.*

v16.0.0-ee
v16.0.1-ee
v16.0.2-ee
v16.0.3-ee
v16.0.4-ee
v16.0.5-ee