This CPE summary could be partial or incomplete. Please contact us for a detailed listing.
Summary
| Summuary | |
|---|---|
| CPE Name | cpe:/a:gitlab:gitlab:9.0.9::~~enterprise~~~ |
| Detail | |||
|---|---|---|---|
| Vendor | Gitlab | First view | 2017-08-02 |
| Product | Gitlab | Last view | 2019-09-17 |
| Version | 9.0.9 | Type | Application |
| Edition | ~~enterprise~~~ | ||
| Language | |||
| Update | |||
| CPE Product | cpe:/a:gitlab:gitlab | ||
Activity : Overall
Related : CVE
This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
| Date | Alert | Access Vector | Access Complexity | Authentication | ||
|---|---|---|---|---|---|---|
| 5 | 2019-09-17 | CVE-2019-15729 | Network | Low | None Requ... | |
| 5 | 2019-09-16 | CVE-2019-15740 | Network | Low | None Requ... | |
| 4.3 | 2019-09-16 | CVE-2019-15739 | Network | Medium | None Requ... | |
| 6.4 | 2019-09-16 | CVE-2019-15737 | Network | Low | None Requ... | |
| 5 | 2019-09-16 | CVE-2019-15736 | Network | Low | None Requ... | |
| Date | Alert | Access Vector | Access Complexity | Authentication | ||
|---|---|---|---|---|---|---|
| 4 | 2019-09-16 | CVE-2019-15734 | Network | Low | Requires ... | |
| 4 | 2019-09-16 | CVE-2019-15733 | Network | Low | Requires ... | |
| 5 | 2019-09-16 | CVE-2019-15730 | Network | Low | None Requ... | |
| 5 | 2019-09-16 | CVE-2019-15726 | Network | Low | None Requ... | |
| 5 | 2019-09-16 | CVE-2019-15722 | Network | Low | None Requ... | |
| 4.3 | 2019-09-09 | CVE-2019-7176 | Network | Medium | None Requ... | |
| 4 | 2019-09-09 | CVE-2019-6995 | Network | Low | Requires ... | |
| 5.8 | 2019-09-09 | CVE-2019-6795 | Network | Medium | None Requ... | |
| 4 | 2019-09-09 | CVE-2019-6794 | Network | Low | Requires ... | |
| 5 | 2019-09-09 | CVE-2019-6792 | Network | Low | None Requ... | |
| 4 | 2019-09-09 | CVE-2019-6791 | Network | Low | Requires ... | |
| 4 | 2019-09-09 | CVE-2019-6789 | Network | Low | Requires ... | |
| 5 | 2019-09-09 | CVE-2019-6788 | Network | Low | None Requ... | |
| 4 | 2019-09-09 | CVE-2019-6786 | Network | Low | Requires ... | |
| 4 | 2019-09-09 | CVE-2019-6785 | Network | Low | Requires ... | |
| 4.3 | 2019-09-09 | CVE-2019-6784 | Network | Medium | None Requ... | |
| 6.5 | 2019-09-09 | CVE-2019-6783 | Network | Low | Requires ... | |
| 4 | 2019-09-09 | CVE-2019-11549 | Network | Low | Requires ... | |
| 3.5 | 2019-09-09 | CVE-2019-11548 | Network | Medium | Requires ... |
CWE : Common Weakness Enumeration
| % | id | Name |
|---|---|---|
| 25% (25) | CWE-200 | Information Exposure |
| 16% (16) | CWE-79 | Failure to Preserve Web Page Structure ('Cross-site Scripting') |
| 12% (12) | CWE-284 | Access Control (Authorization) Issues |
| 9% (9) | CWE-20 | Improper Input Validation |
| 8% (8) | CWE-22 | Improper Limitation of a Pathname to a Restricted Directory ('Path ... |
| % | id | Name |
|---|---|---|
| 4% (4) | CWE-400 | Uncontrolled Resource Consumption ('Resource Exhaustion') |
| 4% (4) | CWE-275 | Permission Issues |
| 2% (2) | CWE-532 | Information Leak Through Log Files |
| 2% (2) | CWE-362 | Race Condition |
| 2% (2) | CWE-352 | Cross-Site Request Forgery (CSRF) |
| 2% (2) | CWE-285 | Improper Access Control (Authorization) |
| 2% (2) | CWE-281 | Improper Preservation of Permissions |
| 1% (1) | CWE-732 | Incorrect Permission Assignment for Critical Resource |
| 1% (1) | CWE-640 | Weak Password Recovery Mechanism for Forgotten Password |
| 1% (1) | CWE-601 | URL Redirection to Untrusted Site ('Open Redirect') |
| 1% (1) | CWE-399 | Resource Management Errors |
| 1% (1) | CWE-320 | Key Management Errors |
| 1% (1) | CWE-319 | Cleartext Transmission of Sensitive Information |
| 1% (1) | CWE-312 | Cleartext Storage of Sensitive Information |
| 1% (1) | CWE-306 | Missing Authentication for Critical Function |
| 1% (1) | CWE-287 | Improper Authentication |
| 1% (1) | CWE-269 | Improper Privilege Management |
| 1% (1) | CWE-254 | Security Features |
| 1% (1) | CWE-93 | Failure to Sanitize CRLF Sequences ('CRLF Injection') |
Snort® IPS/IDS
| Date | Description |
|---|---|
| 2019-09-17 | Gitlab directory traversal attempt RuleID : 51058 - Type : FILE-OTHER - Revision : 1 |
| 2019-09-17 | Gitlab directory traversal attempt RuleID : 51057 - Type : FILE-OTHER - Revision : 1 |
| 2019-09-17 | Gitlab directory traversal attempt RuleID : 51056 - Type : FILE-OTHER - Revision : 1 |
| 2019-09-17 | Gitlab directory traversal attempt RuleID : 51055 - Type : FILE-OTHER - Revision : 1 |
| 2019-09-17 | Gitlab directory traversal attempt RuleID : 51054 - Type : FILE-OTHER - Revision : 1 |
| Date | Description |
|---|---|
| 2019-09-17 | Gitlab directory traversal attempt RuleID : 51053 - Type : FILE-OTHER - Revision : 1 |
| 2019-09-17 | Gitlab directory traversal attempt RuleID : 51052 - Type : FILE-OTHER - Revision : 1 |
| 2019-09-17 | Gitlab directory traversal attempt RuleID : 51051 - Type : FILE-OTHER - Revision : 1 |
| 2019-09-17 | Gitlab directory traversal attempt RuleID : 51050 - Type : FILE-OTHER - Revision : 1 |
| 2019-09-17 | Gitlab directory traversal attempt RuleID : 51049 - Type : FILE-OTHER - Revision : 1 |
| 2019-09-17 | Gitlab directory traversal attempt RuleID : 51048 - Type : FILE-OTHER - Revision : 1 |
| 2019-09-17 | Gitlab directory traversal attempt RuleID : 51047 - Type : FILE-OTHER - Revision : 1 |
Nessus® Vulnerability Scanner
| id | Description |
|---|---|
| 2019-01-17 | Name : The remote FreeBSD host is missing one or more security-related updates. File : freebsd_pkg_ff50192c19eb11e98573001b217b3468.nasl - Type : ACT_GATHER_INFO |
| 2018-12-24 | Name : The remote FreeBSD host is missing one or more security-related updates. File : freebsd_pkg_70b774a805bc11e987ad001b217b3468.nasl - Type : ACT_GATHER_INFO |
| 2018-12-07 | Name : The remote FreeBSD host is missing one or more security-related updates. File : freebsd_pkg_9d3428d4f98c11e8a148001b217b3468.nasl - Type : ACT_GATHER_INFO |
| 2018-11-29 | Name : The remote FreeBSD host is missing one or more security-related updates. File : freebsd_pkg_8a4aba2df33e11e89416001b217b3468.nasl - Type : ACT_GATHER_INFO |
| 2018-11-21 | Name : The remote FreeBSD host is missing one or more security-related updates. File : freebsd_pkg_d889d32cecd911e89416001b217b3468.nasl - Type : ACT_GATHER_INFO |
| id | Description |
|---|---|
| 2018-10-30 | Name : The remote FreeBSD host is missing one or more security-related updates. File : freebsd_pkg_b9591212dba711e89416001b217b3468.nasl - Type : ACT_GATHER_INFO |
| 2018-07-27 | Name : The remote FreeBSD host is missing one or more security-related updates. File : freebsd_pkg_2da838f9916811e88c75d8cb8abf62dd.nasl - Type : ACT_GATHER_INFO |
| 2018-07-20 | Name : The remote FreeBSD host is missing one or more security-related updates. File : freebsd_pkg_8fc615cc8a6611e88c75d8cb8abf62dd.nasl - Type : ACT_GATHER_INFO |
| 2018-06-27 | Name : The remote FreeBSD host is missing one or more security-related updates. File : freebsd_pkg_b950a83b789e11e88545d8cb8abf62dd.nasl - Type : ACT_GATHER_INFO |
| 2018-05-23 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-4206.nasl - Type : ACT_GATHER_INFO |
| 2018-05-03 | Name : The remote FreeBSD host is missing one or more security-related updates. File : freebsd_pkg_9dfe61c84d1511e88f2fd8cb8abf62dd.nasl - Type : ACT_GATHER_INFO |
| 2018-03-29 | Name : The remote FreeBSD host is missing one or more security-related updates. File : freebsd_pkg_dc0c201c31da11e8ac53d8cb8abf62dd.nasl - Type : ACT_GATHER_INFO |
| 2018-03-19 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-4145.nasl - Type : ACT_GATHER_INFO |
| 2018-01-18 | Name : The remote FreeBSD host is missing a security-related update. File : freebsd_pkg_65fab89f223146db8541978f4e87f32a.nasl - Type : ACT_GATHER_INFO |
| 2017-08-14 | Name : The remote FreeBSD host is missing one or more security-related updates. File : freebsd_pkg_abcc5ad37e6a11e793f7d43d7e971a1b.nasl - Type : ACT_GATHER_INFO |
| 2017-07-21 | Name : The remote FreeBSD host is missing one or more security-related updates. File : freebsd_pkg_92f4191a6d2511e793f7d43d7e971a1b.nasl - Type : ACT_GATHER_INFO |
