Language:
http://www.nessus.org/u?2aa69d1c
Severity: Critical
ID: 159925
File Name: gitlab_cve-2021-22205.nasl
Version: 1.7
Type: combined
Agent: unix
Family: CGI abuses
Published: 4/20/2022
Updated: 10/23/2024
Configuration: Enable thorough checks
Supported Sensors: Continuous Assessment, Nessus Agent, Nessus
Risk Factor: Critical
Score: 10.0
Risk Factor: High
Base Score: 7.5
Temporal Score: 6.5
Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P
CVSS Score Source: CVE-2021-22205
Risk Factor: Critical
Base Score: 10
Temporal Score: 9.5
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Temporal Vector: CVSS:3.0/E:H/RL:O/RC:C
CPE: cpe:/a:gitlab:gitlab
Required KB Items: installed_sw/GitLab
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 4/23/2021
Vulnerability Publication Date: 4/23/2021
CISA Known Exploited Vulnerability Due Dates: 11/17/2021
Metasploit (GitLab Unauthenticated Remote ExifTool Command Injection)
CVE: CVE-2021-22205
IAVA: 2021-A-0523-S