Description

Gitlab CI Lint API allows validating CI/CD YAML configuration from remote servers. It doesn't require authentication. An attacker may use this feature to perform SSRF (Server-side request forgery) attacks on the server.

Remediation

Upgrade to the latest version of Gitlab

References

GitLab

Related Vulnerabilities

XML external entity injection via File Upload

Deserialization of Untrusted Data (Java Object Deserialization)

Zimbra Collaboration Suite SSRF (CVE-2020-7796)

WordPress Server-Side Request Forgery (SSRF) Vulnerability (CVE-2016-4029)

Deserialization of Untrusted Data (Java JSON Deserialization) Genson

Severity

Medium

Classification

CWE-918 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

Tags

Acumonitor SSRF