Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

GitLab — Vulnerabilities & Security Advisories 1012

Browse all 1012 CVE security advisories affecting GitLab. AI-powered Chinese analysis, POCs, and references for each vulnerability.

GitLab operates as a comprehensive DevOps platform, providing version control, continuous integration, and deployment capabilities primarily for software development teams. With over one thousand recorded CVEs, the software has historically been susceptible to critical vulnerability classes, including remote code execution, cross-site scripting, and privilege escalation attacks. These flaws often stem from complex integrations and API endpoints, allowing attackers to bypass authentication or execute arbitrary commands on affected servers. Notable incidents have included unauthorized access to private repositories and data exfiltration due to improper access controls. The high volume of vulnerabilities reflects the platform’s extensive feature set and frequent updates, necessitating rigorous patch management. Security assessments consistently highlight the importance of configuring secure defaults and monitoring for known exploit patterns to mitigate risks associated with its broad attack surface.

Top products by GitLab: GitLab GitLab CE/EE GitLab Community and Enterprise Editions GitLab EE GitLab Runner gitlab-vscode-extension DAST GitLab Community Edition and GitLab Enterprise Edition Gitaly GitLab Pages DAST API scanner GitLab DAST API scanner GitLab VSCode Fork GitLab Language Server GitLab AI Gateway
CVE IDTitleCVSSSeverityPublished
CVE-2022-3759 GitLab 安全漏洞 — GitLab 4.3 Medium2023-02-13
CVE-2022-4138 GitLab 跨站请求伪造漏洞 — GitLab 6.4 Medium2023-02-13
CVE-2023-0518 GitLab 安全漏洞 — GitLab 4.3 Medium2023-02-13
CVE-2022-4206 GitLab CE/EE 安全漏洞 — DAST API scanner 5.0 Medium2023-02-01
CVE-2022-4201 GitLab CE/EE 代码问题漏洞 — GitLab 3.5 Low2023-01-27
CVE-2022-4205 GitLab CE/EE 安全漏洞 — GitLab 6.3 Medium2023-01-27
CVE-2022-4255 GitLab EE安全漏洞 — GitLab 4.3 Medium2023-01-27
CVE-2022-4335 GitLab 代码问题漏洞 — GitLab 4.3 Medium2023-01-27
CVE-2022-3478 GitLab CE/EE 代码问题漏洞 — GitLab 4.3 Medium2023-01-24
CVE-2022-3482 GitLab CE/EE 安全漏洞 — GitLab 5.3 Medium2023-01-24
CVE-2022-3572 GitLab CE/EE 跨站脚本漏洞 — GitLab 9.3 Critical2023-01-24
CVE-2022-3740 GitLab CE/EE 安全漏洞 — GitLab 6.5 Medium2023-01-24
CVE-2022-3820 GitLab CE/EE 安全漏洞 — GitLab 6.5 Medium2023-01-24
CVE-2022-3902 GitLab CE/EE 安全漏洞 — GitLab 5.5 Medium2023-01-24
CVE-2022-4054 GitLab CE/EE 安全漏洞 — GitLab 5.5 Medium2023-01-24
CVE-2022-4092 GitLab 跨站脚本漏洞 — GitLab 5.7 Medium2023-01-24
CVE-2022-2251 GitLab 操作系统命令注入漏洞 — GitLab Runner 4.8 Medium2023-01-17
CVE-2022-2907 多款 GitLab 产品 安全漏洞 — GitLab 5.7 Medium2023-01-17
CVE-2022-3514 GitLab Enterprise Edition和GitLab Community Edition安全漏洞 — GitLab 4.3 Medium2023-01-12
CVE-2022-3573 GitLab Enterprise Edition和GitLab Community Edition 跨站脚本漏洞 — GitLab 5.4 Medium2023-01-12
CVE-2022-3613 GitLab Enterprise Edition和GitLab Community Edition 安全漏洞 — GitLab 5.8 Medium2023-01-12
CVE-2022-3870 GitLab Enterprise Edition和GitLab Community Edition 安全漏洞 — GitLab 5.3 Medium2023-01-12
CVE-2022-4037 GitLab Enterprise Edition和GitLab Community Edition 竞争条件问题漏洞 — GitLab 6.4 Medium2023-01-12
CVE-2022-4131 GitLab Enterprise Edition和GitLab Community Edition 安全漏洞 — GitLab 4.3 Medium2023-01-12
CVE-2022-4167 GitLab Enterprise Edition和GitLab Community Edition 安全漏洞 — GitLab 5.3 Medium2023-01-12
CVE-2022-4342 GitLab Enterprise Edition和GitLab Community Edition 安全漏洞 — GitLab 5.5 Medium2023-01-12
CVE-2022-4365 GitLab Enterprise Edition和GitLab Community Edition安全漏洞 — GitLab 5.5 Medium2023-01-12
CVE-2023-0042 GitLab Enterprise Edition和GitLab Community Edition 输入验证错误漏洞 — GitLab 6.1 Medium2023-01-12
CVE-2022-2761 GitLab 安全漏洞 — GitLab 4.3 Medium2022-11-09
CVE-2022-3265 GitLab 跨站脚本漏洞 — GitLab 7.3 High2022-11-09

This page lists every published CVE security advisory associated with GitLab. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.