CVE-2021-22181

Summary

A denial of service vulnerability in GitLab CE/EE affecting all versions since 11.8 allows an attacker to create a recursive pipeline relationship and exhaust resources.

Affected Software

VendorProductVersion RangeStatus
GitLabGitLab>=11.8, <13.10.5affected
GitLabGitLab>=13.11, <13.11.5affected
GitLabGitLab>=13.12, <13.12.2affected

Weaknesses

  • Uncontrolled resource consumption in GitLab

ADP Enrichment

CVE Program Container

Additional References

References