CVE-2021-22217 - log back

CVE-2021-22217 edited at 08 Jun 2021 17:01:02
Description
- A denial of service vulnerability in all versions of GitLab CE/EE before 13.12.2, 13.11.5 or 13.10.5 allows an attacker to cause uncontrolled resource consumption with a specially crafted issue or merge request.
+ A denial of service vulnerability in all versions of GitLab CE/EE before 13.12.2 allows an attacker to cause uncontrolled resource consumption with a specially crafted issue or merge request.
References
https://about.gitlab.com/releases/2021/06/01/security-release-gitlab-13-12-2-released/
https://gitlab.com/gitlab-org/gitlab/-/issues/300709
https://hackerone.com/reports/1090049
CVE-2021-22217 edited at 08 Jun 2021 16:55:44
Severity
- Unknown
+ Medium
Remote
- Unknown
+ Remote
Type
- Unknown
+ Denial of service
Description
+ A denial of service vulnerability in all versions of GitLab CE/EE before 13.12.2, 13.11.5 or 13.10.5 allows an attacker to cause uncontrolled resource consumption with a specially crafted issue or merge request.
References
+ https://about.gitlab.com/releases/2021/06/01/security-release-gitlab-13-12-2-released/
+ https://gitlab.com/gitlab-org/gitlab/-/issues/300709
+ https://hackerone.com/reports/1090049
CVE-2021-22217 created at 08 Jun 2021 16:32:39
Severity
+ Unknown
Remote
+ Unknown
Type
+ Unknown
Description
References
Notes