CVE-2021-22246

Summary

A vulnerability was discovered in GitLab versions before 14.0.2, 13.12.6, 13.11.6. GitLab Webhook feature could be abused to perform denial of service attacks.

Affected Software

VendorProductVersion RangeStatus
GitLabGitLab>=2.0, <13.11.6affected
GitLabGitLab>=13.12, <13.12.6affected
GitLabGitLab>=14.0, <14.0.2affected

Weaknesses

  • Allocation of resources without limits or throttling in GitLab

ADP Enrichment

CVE Program Container

Additional References

References