CVE-2021-22223

CVE-2021-22223

Name

CVE-2021-22223

Description

Client-Side code injection through Feature Flag name in GitLab CE/EE starting with 11.9 allows a specially crafted feature flag name to PUT requests on behalf of other users via clicking on a link

NVD Severity

medium

Other trackers

CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia

Mailing lists

oss-security, full-disclosure, bugtraq

Exploits

Exploit DB, Metasploit

Forges

GitHub (code, issues), Aports (code, issues)

Type	URI
CONFIRM	https://gitlab.com/gitlab-org/cves/-/blob/master/2021/CVE-2021-22223.json
MISC	https://gitlab.com/gitlab-org/gitlab/-/issues/293946
MISC	https://hackerone.com/reports/1059557

Type

URI

CONFIRM

https://gitlab.com/gitlab-org/cves/-/blob/master/2021/CVE-2021-22223.json

MISC

https://gitlab.com/gitlab-org/gitlab/-/issues/293946

MISC

https://hackerone.com/reports/1059557

Match rules

CPE URI	Source package	Min version	Max version
`cpe:2.3:a:gitlab:gitlab::::::::`	gitlab	>= 11.9.0	< 13.11.6
`cpe:2.3:a:gitlab:gitlab::::::::`	gitlab	>= 13.12.0	< 13.12.6
`cpe:2.3:a:gitlab:gitlab::::::::`	gitlab	>= 14.0.0	< 14.0.2
`cpe:2.3:a:gitlab:gitlab:::::community:::*`	gitlab	>= 13.9.0	< 13.11.6

CPE URI

Source package

Min version

Max version

cpe:2.3:a:gitlab:gitlab:*:*:*:*:*:*:*:*

gitlab

>= 11.9.0

< 13.11.6

cpe:2.3:a:gitlab:gitlab:*:*:*:*:*:*:*:*

gitlab

>= 13.12.0

< 13.12.6

cpe:2.3:a:gitlab:gitlab:*:*:*:*:*:*:*:*

gitlab

>= 14.0.0

< 14.0.2

cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*

gitlab

>= 13.9.0

< 13.11.6

References

Match rules

Vulnerable and fixed packages