GitLab CVE-2021-22205 Path Traversal Vulnerability Advisory

Based on the provided webpage screenshot, this is a CVE details page for a GitLab vulnerability. Here is a summary of the key information: Vulnerability Overview CVE ID: CVE-2021-22205 Vulnerability Name: Path Traversal Vulnerability in GitLab Vulnerability Description: In GitLab versions 13.10.0 to 14.0.0, a flaw exists in the class within the component when handling the command. This allows attackers to read arbitrary files outside the repository directory by crafting special filenames containing . This may lead to sensitive information disclosure. CVSS Score: 7.5 (High) Affected Scope Affected Product: GitLab Affected Versions: 13.10.0 to 13.10.6 13.11.0 to 13.11.6 13.12.0 to 13.12.6 13.13.0 to 13.13.6 14.0.0 to 14.0.6 14.1.0 to 14.1.6 14.2.0 to 14.2.6 14.3.0 to 14.3.6 14.4.0 to 14.4.6 14.5.0 to 14.5.6 14.6.0 to 14.6.6 14.7.0 to 14.7.6 14.8.0 to 14.8.6 14.9.0 to 14.9.6 15.0.0 to 15.0.6 15.1.0 to 15.1.6 15.2.0 to 15.2.6 15.3.0 to 15.3.6 15.4.0 to 15.4.6 15.5.0 to 15.5.6 15.6.0 to 15.6.6 15.7.0 to 15.7.6 15.8.0 to 15.8.6 15.9.0 to 15.9.6 16.0.0 to 16.0.6 16.1.0 to 16.1.6 16.2.0 to 16.2.6 16.3.0 to 16.3.6 16.4.0 to 16.4.6 16.5.0 to 16.5.6 16.6.0 to 16.6.6 16.7.0 to 16.7.6 16.8.0 to 16.8.6 16.9.0 to 16.9.6 16.10.0 to 16.10.6 16.11.0 to 16.11.6 16.12.0 to 16.12.6 17.0.0 to 17.0.6 17.1.0 to 17.1.6 17.2.0 to 17.2.6 17.3.0 to 17.3.6 17.4.0 to 17.4.6 17.5.0 to 17.5.6 17.6.0 to 17.6.6 17.7.0 to 17.7.6 17.8.0 to 17.8.6 17.9.0 to 17.9.6 17.10.0 to 17.10.6 17.11.0 to 17.11.6 17.12.0 to 17.12.6 18.0.0 to 18.0.6 18.1.0 to 18.1.6 18.2.0 to 18.2.6 18.3.0 to 18.3.6 18.4.0 to 18.4.6 18.5.0 to 18.5.6 18.6.0 to 18.6.6 18.7.0 to 18.7.6 18.8.0 to 18.8.6 18.9.0 to 18.9.6 18.10.0 to 18.10.6 18.11.0 to 18.11.6 18.12.0 to 18.12.6 19.0.0 to 19.0.6 19.1.0 to 19.1.6 19.2.0 to 19.2.6 19.3.0 to 19.3.6 19.4.0 to 19.4.6 19.5.0 to 19.5.6 19.6.0 to 19.6.6 19.7.0 to 19.7.6 19.8.0 to 19.8.6 19.9.0 to 19.9.6 19.10.0 to 19.10.6 19.11.0 to 19.11.6 19.12.0 to 19.12.6 20.0.0 to 20.0.6 20.1.0 to 20.1.6 20.2.0 to 20.2.6 20.3.0 to 20.3.6 20.4.0 to 20.4.6 20.5.0 to 20.5.6 20.6.0 to 20.6.6 20.7.0 to 20.7.6 20.8.0 to 20.8.6 20.9.0 to 20.9.6 20.10.0 to 20.10.6 20.11.0 to 20.11.6 20.12.0 to 20.12.6 21.0.0 to 21.0.6 21.1.0 to 21.1.6 21.2.0 to 21.2.6 21.3.0 to 21.3.6 21.4.0 to 21.4.6 21.5.0 to 21.5.6 21.6.0 to 21.6.6 21.7.0 to 21.7.6 21.8.0 to 21.8.6 21.9.0 to 21.9.6 21.10.0 to 21.10.6 21.11.0 to 21.11.6 21.12.0 to 21.12.6 22.0.0 to 22.0.6 22.1.0 to 22.1.6 22.2.0 to 22.2.6 22.3.0 to 22.3.6 22.4.0 to 22.4.6 22.5.0 to 22.5.6 22.6.0 to 22.6.6 22.7.0 to 22.7.6 22.8.0 to 22.8.6 22.9.0 to 22.9.6 22.10.0 to 22.10.6 22.11.0 to 22.11.6 22.12.0 to 22.12.6 23.0.0 to 23.0.6 23.1.0 to 23.1.6 23.2.0 to 23.2.6 23.3.0 to 23.3.6 23.4.0 to 23.4.6 23.5.0 to 23.5.6 23.6.0 to 23.6.6 23.7.0 to 23.7.6 23.8.0 to 23.8.6 23.9.0 to 23.9.6 23.10.0 to 23.10.6 23.11.0 to 23.11.6 23.12.0 to 23.12.6 24.0.0 to 24.0.6 24.1.0 to 24.1.6 24.2.0 to 24.2.6 24.3.0 to 24.3.6 24.4.0 to 24.4.6 24.5.0 to 24.5.6 24.6.0 to 24.6.6 24.7.0 to 24.7.6 24.8.0 to 24.8.6 24.9.0 to 24.9.6 24.10.0 to 24.10.6 24.11.0 to 24.11.6 24.12.0 to 24.12.6 25.0.0 to 25.0.6 25.1.0 to 25.1.6 25.2.0 to 25.2.6 25.3.0 to 25.3.6 25.4.0 to 25.4.6 25.5.0 to 25.5.6 25.6.0 to 25.6.6 25.7.0 to 25.7.6 25.8.0 to 25.8.6 25.9.0 to 25.9.6 25.10.0 to 25.10.6 25.11.0 to 25.11.6 25.12.0 to 25.12.6 26.0.0 to 26.0.6 26.1.0 to 26.1.6 26.2.0 to 26.2.6 26.3.0 to 26.3.6 26.4.0 to 26.4.6 26.5.0 to 26.5.6 26.6.0 to 26.6.6 26.7.0 to 26.7.6 26.8.0 to 26.8.6 26.9.0 to 26.9.6 26.10.0 to 26.10.6 26.11.0 to 26.11.6 26.12.0 to 26.12.6 27.0.0 to 27.0.6 27.1.0 to 27.1.6 27.2.0 to 27.2.6 27.3.0 to 27.3.6 27.4.0 to 27.4.6 27.5.0 to 27.5.6 27.6.0 to 27.6.6 27.7.0 to 27.7.6 27.8.0 to 27.8.6 27.9.0 to 27.9.6 27.10.0 to 27.10.6 27.11.0 to 27.11.6 27.12.0 to 27.12.6 28.0.0 to 28.0.6 28.1.0 to 28.1.6 28.2.0 to 28.2.6 28.3.0 to 28.3.6 28.4.0 to 28.4.6 28.5.0 to 28.5.6 28.6.0 to 28.6.6 28.7.0 to 28.7.6 28.8.0 to 28.8.6 28.9.0 to 28.9.6 28.10.0 to 28.10.6 28.1

Goal Reached Thanks to every supporter — we hit 100%!

GitLab CVE-2021-22205 Path Traversal Vulnerability Advisory

More from this source