CVE-2022-0735

high-risk
Published 2022-03-28

An issue has been discovered in GitLab CE/EE affecting all versions starting from 12.10 before 14.6.5, all versions starting from 14.7 before 14.7.4, all versions starting from 14.8 before 14.8.2. An unauthorised user was able to steal runner registration tokens through an information disclosure vulnerability using quick actions commands.

Do I need to act?

!
57.4% chance of exploitation in next 30 days
EPSS score — higher than 43% of all CVEs
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
+
Fix available
Upgrade to: 20a7fdf52c92b0b26e328d9f55803af6e4baebe4, 202c3007ccf93d8b338e10b49ef2c82e9d6f6bea, 2ef3e89df350d5f8ffc802c04c5f19864249d125
10
CVSS 10.0/10 Critical
NETWORK / LOW complexity

Affected Products (2)

Affected Vendors

Gitlab

References (4)

Vendor Advisory https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0735.json
Broken Link https://gitlab.com/gitlab-org/gitlab/-/issues/353529
Vendor Advisory https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0735.json
Broken Link https://gitlab.com/gitlab-org/gitlab/-/issues/353529
58
/ 100
high-risk
Severity 33/34 · Critical
Exploitability 18/34 · Moderate
Exposure 7/34 · Low