CVE-2022-0244

Summary

An issue has been discovered in GitLab CE/EE affecting all versions starting with 14.5. Arbitrary file read was possible by importing a group was due to incorrect handling of file.

Affected Software

VendorProductVersion RangeStatus
GitLabGitLab>=14.6, <14.6.2affected
GitLabGitLab>=14.5, <14.5.3affected

Weaknesses

  • Information exposure in GitLab

ADP Enrichment

CVE Program Container

Additional References

References