Detections
Analytics

FreeBSD : Gitlab -- multiple vulnerabilities (4c26f668-0fd2-11ed-a83d-001b217b3468)

high Nessus Plugin ID 163649

Language:

Synopsis

The remote FreeBSD host is missing one or more security-related updates.

Description

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 4c26f668-0fd2-11ed-a83d-001b217b3468 advisory.

 - Gitlab reports: Revoke access to confidential notes todos Pipeline subscriptions trigger new pipelines with the wrong author Ability to gain access to private project through an email invite by using other user's email address as an unverified secondary email Import via git protocol allows to bypass checks on repository Unauthenticated IP allowlist bypass when accessing job artifacts through GitLab Pages Maintainer can leak Packagist and other integration access tokens by changing integration URL Unauthenticated access to victims Grafana datasources through path traversal Unauthorized users can filter issues by contact and organization Malicious Maintainer may change the visibility of project or a group Stored XSS in job error messages Enforced group MFA can be bypassed when using Resource Owner Password Credentials grant Non project members can view public project's Deploy Keys IDOR in project with Jira integration leaks project owner's other projects Jira issues Group Bot Users and Tokens not deleted after group deletion Email invited members can join projects even after the member lock has been enabled Datadog integration returns user emails (CVE-2022-2095, CVE-2022-2303, CVE-2022-2307, CVE-2022-2326, CVE-2022-2417, CVE-2022-2456, CVE-2022-2459, CVE-2022-2497, CVE-2022-2498, CVE-2022-2499, CVE-2022-2500, CVE-2022-2501, CVE-2022-2512, CVE-2022-2531, CVE-2022-2534, CVE-2022-2539)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

Solution

Update the affected packages.

See Also

http://www.nessus.org/u?4d76f33e

http://www.nessus.org/u?a32776e7

Plugin Details

Severity: High

ID: 163649

File Name: freebsd_pkg_4c26f6680fd211eda83d001b217b3468.nasl

Version: 1.7

Type: local

Published: 7/30/2022

Updated: 12/8/2022

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.2

CVSS v2

Risk Factor: High

Base Score: 9.4

Temporal Score: 7

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:N

CVSS Score Source: CVE-2022-2326

CVSS v3

Risk Factor: High

Base Score: 8.1

Temporal Score: 7.1

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

CPE: cpe:/o:freebsd:freebsd, p-cpe:/a:freebsd:freebsd:gitlab-ce

Required KB Items: Host/local_checks_enabled, Host/FreeBSD/release, Host/FreeBSD/pkg_info

Exploit Ease: No known exploits are available

Patch Publication Date: 7/30/2022

Vulnerability Publication Date: 7/28/2022

Reference Information

CVE: CVE-2022-2095, CVE-2022-2303, CVE-2022-2307, CVE-2022-2326, CVE-2022-2417, CVE-2022-2456, CVE-2022-2459, CVE-2022-2497, CVE-2022-2498, CVE-2022-2499, CVE-2022-2500, CVE-2022-2501, CVE-2022-2512, CVE-2022-2531, CVE-2022-2534, CVE-2022-2539

IAVA: 2022-A-0302-S