CVE-2024-1066 | GitLab Enterprise Edition up to 16.6.6/16.7.4/16.8.1 GraphQL vulnerabilitiesCountByDay resource consumption (Issue 420341)

Inserito da Angelo Barbosa | Feb 8, 2024 | CVE

A vulnerability was found in GitLab Enterprise Edition up to 16.6.6/16.7.4/16.8.1. It has been classified as problematic. This affects the function vulnerabilitiesCountByDay of the component GraphQL. The manipulation leads to resource consumption.

This vulnerability is uniquely identified as CVE-2024-1066. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-1066 | GitLab Enterprise Edition up to 16.6.6/16.7.4/16.8.1 GraphQL vulnerabilitiesCountByDay resource consumption (Issue 420341)

Post correlati

CVE-2024-37906 | admidio up to 4.3.8 ecard_send.php ecard_recipients sql injection

CVE-2023-47872 | gVectors wpForo Forum Plugin up to 2.2.3 on WordPress cross site scripting

CVE-2024-21658 | discourse-calendar region resource consumption (GHSA-65f2-9ghp-x8h8)

CVE-2024-5432 | Lifeline Donation Plugin up to 1.2.6 on WordPress improper authentication