An issue has been discovered in GitLab affecting all versions starting from 14.6 before 14.6.5, all versions starting from 14.7 before 14.7.4, all versions starting from 14.8 before 14.8.2. GitLab was leaking user passwords when adding mirrors with SSH credentials under specific conditions.
References
Link | Resource |
---|---|
https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0738.json | Vendor Advisory |
https://gitlab.com/gitlab-org/gitlab/-/issues/27395 | Broken Link |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: GitLab
Published: 2022-03-28T18:53:04
Updated: 2022-03-28T18:53:04
Reserved: 2022-02-23T00:00:00
Link: CVE-2022-0738
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-03-28T19:15:08.733
Modified: 2022-04-07T15:50:02.600
Link: CVE-2022-0738
JSON object: View
Redhat Information
No data.
CWE