An authorization vulnerability exists in GitLab versions 14.0 prior to 16.6.6, 16.7 prior to 16.7.4, and 16.8 prior to 16.8.1. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.
Gitlab
Authentication Bypass
NVD
CVSS 3.1
4.3
EPSS
0.5%
Microsoft Edge (Chromium-based) Spoofing Vulnerability. Rated low severity (CVSS 3.3), this vulnerability is no authentication required, low attack complexity.
Jwt Attack
Information Disclosure
Google
Microsoft
Edge Chromium
NVD
CVSS 3.1
3.3
EPSS
0.4%
Microsoft Edge (Chromium-based) Spoofing Vulnerability. Rated low severity (CVSS 2.5), this vulnerability is no authentication required.
Information Disclosure
Google
Microsoft
Edge Chromium
NVD
CVSS 3.1
2.5
EPSS
0.5%
Prev
Page 3 of 3