中文

Security research

Hanwu Safety Laboratory
Vulnerability warning
Security Bulletin
git lab Remote Code Execution Vulnerability


0x00   Vulnerability number


Not yet


0x01   Hazard level


high-risk


0x02 vulnerability overview


Git lab is an open source project for warehouse management system. It uses git as a code management tool and builds a web service on this basis. Unauthorized but authenticated users render code through controllable markdown, causing code execution in Git lab community and enterprise editions.


0x03 version affected

Git Lab < 13.9.4

Git Lab < 13.9.4

Git Lab < 13.8.6

Git Lab  < 13.8.6

Git Lab < 13.7.9

Git Lab  < 13.7.9


0x04 repair suggestions


At present, the official vulnerability repair version has been released. It is recommended that users upgrade to the secure version:

https://about.gitlab.com/update/



下一条:deeply convinced of SSL VPN co...Previous:security risk notification of ...
Return
Product
SMS
PAM
EPV
DIM
DBXPEXT
DAF
NGDAP
NGWAF
DDM
iLOG
iSIEM
Solution
Operator Finance
Energy Medicine
Government Internet
Educational Enterprises
Support
Security research
Security services
Training
After-sales service
Channel
Cooperation Mode
Channel policy
Process
About Us
Enterprise introduction
Corporate culture
Honors
News Media
Contact Us
Service Hotline
400-905-8088

WeChat Followpldsec and Hanling information

    
Friendship Link
Hangzhou pldsec Hanling information Hanwu safety laboratory
Copyright © 2019 All Rights Reserved.  Hangzhou pldsec Network Technology Co   浙ICP备13031590号-1   |   Legal declaration
top
Copyright © 2019 All Rights Reserved Designed
Hangzhou pldsec Network Technology Co