Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-1965

An issue has been discovered in GitLab EE affecting all versions starting from 14.2 before 15.9.6, all versions starting from 15.10 before 15.10.5, all versions starting from 15.11 before 15.11.1. Lack of verification on RelayState parameter allowed a maliciously crafted URL to obtain access tokens granted for 3rd party Group SAML SSO logins. This feature isn't enabled by default.

Published

2023-05-03T21:15:18.220

Last Modified

2024-11-21T07:40:14.613

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 6.8 (MEDIUM)

Weaknesses

Type: Primary
CWE-352

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	gitlab	gitlab	< 15.9.6	Yes
Application	gitlab	gitlab	< 15.10.5	Yes
Application	gitlab	gitlab	< 15.11.1	Yes

References

https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-1965.json Third Party Advisory ([email protected])
https://gitlab.com/gitlab-org/gitlab/-/issues/406235 Broken Link ([email protected])
https://hackerone.com/reports/1923672 Permissions Required ([email protected])
https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-1965.json Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://gitlab.com/gitlab-org/gitlab/-/issues/406235 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
https://hackerone.com/reports/1923672 Permissions Required (af854a3a-2127-422b-91ae-364da2661108)