CVE-2023-1555

MEDIUM Year: 2023
CVSS v3 Score
4.3
Medium
Weakness Type
CWE-262
View all →

Vulnerability Description

An issue has been discovered in GitLab affecting all versions starting from 15.2 before 16.1.5, all versions starting from 16.2 before 16.2.5, all versions starting from 16.3 before 16.3.1. A namespace-level banned user can access the API.

Related Vulnerabilities

CVE-2023-2022

MEDIUM
CVSS:4.3(Medium)

An issue has been discovered in GitLab CE/EE affecting all versions starting before 16.0.8, all versions starting from 16.1 before 16.1.3, all versions starting from 16.2 before 16.2.2, which leads to...

CWE-2622023

CVE-2022-22767

HIGH
CVSS:8.8(High)

Specific BD Pyxis™ products were installed with default credentials and may presently still operate with these credentials. There may be scenarios where BD Pyxis™ products are installed with the same ...

CWE-2622022

CVE-2023-2022

MEDIUM
CVSS:4.3(Medium)

An issue has been discovered in GitLab CE/EE affecting all versions starting before 16.0.8, all versions starting from 16.1 before 16.1.3, all versions starting from 16.2 before 16.2.2, which leads to...

CWE-2622023