Vulnerability Information CVE ID CVE-2022-3283 Vulnerability Type CVE Description Uncontrolled resource consumption in GitLab Affected Versions GitLab CE/EE: GitLab CE/EE: GitLab CE/EE: References https://hackerone.com/reports/1543718 https://gitlab.com/gitlab-org/gitlab/-/issues/361982 https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3283.json Vulnerability Details A potential DoS vulnerability was discovered in GitLab CE/EE affecting all versions before 15.2.5, all versions from 15.3 before 15.3.4, and all versions from 15.4 before 15.4.1. Cloning an issue with specially crafted content in the description could trigger high CPU usage. CVSS Score Base Score: 7.5 Base Severity: HIGH Acknowledgments Thanks to legit-security (https://hackerone.com/legit-security) for reporting this vulnerability through our HackerOne bug bounty program.