CVE-2022-4342

LOW Year: 2022
CVSS v3 Score
3.8
Low
Weakness Type
NVD-CWE-Other
View all →

Vulnerability Description

An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.1 before 15.5.7, all versions starting from 15.6 before 15.6.4, all versions starting from 15.7 before 15.7.2. A malicious Maintainer can leak masked webhook secrets by changing target URL of the webhook.

Related Vulnerabilities

CVE-2017-10365

LOW
CVSS:3.8(Low)

Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: InnoDB). Supported versions that are affected are 5.7.18 and earlier. Easily exploitable vulnerability allows high pr...

NVD-CWE-Other2017

CVE-2017-4896

LOW
CVSS:3.8(Low)

Airwatch Inbox for Android contains a vulnerability that may allow a rooted device to decrypt the local data used by the application. Successful exploitation of this issue may result in an unauthorize...

NVD-CWE-Other2017

CVE-2018-2792

LOW
CVSS:3.8(Low)

Vulnerability in the Hardware Management Pack component of Oracle Sun Systems Products Suite (subcomponent: Ipmitool). The supported version that is affected is Prior to 2.4.3. Easily exploitable vuln...

NVD-CWE-Other2018

CVE-2018-2831

LOW
CVSS:3.8(Low)

Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization (subcomponent: Core). Supported versions that are affected are Prior to 5.1.36 and Prior to 5.2.10. Easily exploitable vuln...

NVD-CWE-Other2018

CVE-2019-0162

LOW
CVSS:3.8(Low)

Memory access in virtual memory mapping for some microprocessors may allow an authenticated user to potentially enable information disclosure via local access.

NVD-CWE-Other2019

CVE-2019-2501

LOW
CVSS:3.8(Low)

Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization (subcomponent: Core). Supported versions that are affected are prior to 5.2.24 and prior to 6.0.2. Easily exploitable vulne...

NVD-CWE-Other2019