CVE-2024-4557 | GitLab Community Edition/Enterprise Edition up to 16.11.4/17.0.2/17.1.0 Banzai Pipeline resource consumption (Issue 460517)

Inserito da Angelo Barbosa | Giu 27, 2024 | CVE

A vulnerability, which was classified as critical, has been found in GitLab Community Edition and Enterprise Edition up to 16.11.4/17.0.2/17.1.0. This issue affects some unknown processing of the component Banzai Pipeline Handler. The manipulation leads to resource consumption.

The identification of this vulnerability is CVE-2024-4557. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-4557 | GitLab Community Edition/Enterprise Edition up to 16.11.4/17.0.2/17.1.0 Banzai Pipeline resource consumption (Issue 460517)

Post correlati

CVE-2024-1411 | PowerPack Addons for Elementor up to 2.7.15 on WordPress Twitter Buttons Widget cross site scripting

CVE-2024-39377 | Adobe Media Encoder AVI File Parser out-of-bounds write (ZDI-24-1200)

CVE-2024-20357 | Cisco IP Phone 6800/IP Phone 7800/IP Phone 8800 up to 12.0.4 XML out-of-bounds write (cisco-sa-ipphone-multi-vulns-cXAhCvS)

CVE-2023-6439 | ZenTao PMS 18.8 cross site scripting