📦

dynamic_application_security_testing_analyzer

Vendor: gitlab

Actively Exploited 0 CISA KEV List

PoC / Exploits 0 Code Available

Total RCEs 0 Remote Access

Total CVEs 4 Total Indexed

Avg. EPSS 0.24% Exploit Prob.

Latest CVE CVE-2023-0326 Mar 27

Security Vulnerability Index

Page 1 / 1

5.0 CVSS

CVE-2023-0326

An issue has been discovered in GitLab DAST API scanner affecting all versions starting from 1.6.50 before 2.11.0, where Authorization headers was leaked in vulnerability report evidence.

EPSS: 0.26%

Severity: MEDIUM

Mar 27, 2023

7.7 CVSS

CVE-2022-3767

Missing validation in DAST analyzer affecting all versions from 1.11.0 prior to 3.0.32, allows custom request headers to be sent with every request, regardless of the host.

EPSS: 0.21%

Severity: HIGH

Mar 09, 2023

5.0 CVSS

CVE-2022-4317

An issue has been discovered in GitLab DAST analyzer affecting all versions starting from 1.47 before 3.0.51, which sends custom request headers in redirects.

EPSS: 0.30%

Severity: MEDIUM

Mar 09, 2023

5.0 CVSS

CVE-2022-4315

An issue has been discovered in GitLab DAST analyzer affecting all versions starting from 2.0 before 3.0.55, which sends custom request headers with every request on the authentication page.

EPSS: 0.20%

Severity: MEDIUM

Mar 08, 2023

Displaying 4 of 4 Total Entries

Total 1 Sections