CVE-2022-0735

CRITICAL severity · CVSS 10

10CVSS CRITICAL

Summary

An issue has been discovered in GitLab CE/EE affecting all versions starting from 12.10 before 14.6.5, all versions starting from 14.7 before 14.7.4, all versions starting from 14.8 before 14.8.2. An unauthorised user was able to steal runner registration tokens through an information disclosure vulnerability using quick actions commands.

Impact & exploitability

Attack vectorNetwork

Attack complexityLow

Privileges requiredNone

User interactionNone

Confidentiality impactHigh

Integrity impactHigh

Availability impactHigh

Exploit probability (EPSS)73%

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Affected products we track (1)

GitLab

Recommendation

Apply the vendor fix promptly. Open any affected product above for its exact safe version.

Additional information

NVD record
https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0735.jsonAdvisory
https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0735.jsonAdvisory
https://gitlab.com/gitlab-org/gitlab/-/issues/353529
https://gitlab.com/gitlab-org/gitlab/-/issues/353529