Language:
http://www.nessus.org/u?81b462e1
https://gitlab.com/gitlab-org/gitlab/-/issues/417975
https://blog.vlt.sh/blog/the-massive-hole-in-the-npm-ecosystem
Severity: Medium
ID: 202558
File Name: gitlab_cve-2024-6595.nasl
Version: 1.2
Type: combined
Agent: unix
Family: CGI abuses
Published: 7/17/2024
Updated: 7/22/2024
Configuration: Enable thorough checks
Supported Sensors: Continuous Assessment, Nessus Agent, Nessus
Risk Factor: Low
Score: 2.2
Risk Factor: Medium
Base Score: 5
Temporal Score: 3.9
Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N
CVSS Score Source: CVE-2024-6595
Risk Factor: Medium
Base Score: 5.3
Temporal Score: 4.8
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Temporal Vector: CVSS:3.0/E:P/RL:O/RC:C
CPE: cpe:/a:gitlab:gitlab
Required KB Items: installed_sw/GitLab
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 7/17/2024
Vulnerability Publication Date: 7/11/2024
CVE: CVE-2024-6595