cve icon indicating copy to clipboard operation
cve copied to clipboard

Published 20 hours ago verified publisher icon trickest

CVE-2022-2185

Open nenadzaric opened this issue 2 years ago • 1 comments

nenadzaric avatar Jul 21 '22 15:07 nenadzaric

CVE-2022-2185

Description

A critical issue has been discovered in GitLab affecting all versions starting from 14.0 prior to 14.10.5, 15.0 prior to 15.0.4, and 15.1 prior to 15.1.1 where an authenticated user authorized to import projects could import a maliciously crafted project leading to remote code execution.

POC

Reference

No PoCs from references.

Github

  • https://github.com/nomi-sec/PoC-in-GitHub
  • https://github.com/p1ay8y3ar/cve_monitor
  • https://github.com/safe3s/CVE-2022-2185-poc
  • https://github.com/tarlepp/links-of-the-week
  • https://github.com/west-wind/Threat-Hunting-With-Splunk

trickest-workflows avatar Jul 21 '22 22:07 trickest-workflows