CVE Vulnerabilities

CVE-2022-3030

Published: Oct 17, 2022 | Modified: May 13, 2025
CVSS 3.x
4.3
MEDIUM
Source:
NVD
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu
MEDIUM
root.io minimus.io echohq.com

An improper access control issue in GitLab CE/EE affecting all versions starting before 15.1.6, all versions from 15.2 before 15.2.4, all versions from 15.3 before 15.3.2 allows disclosure of pipeline status to unauthorized users.

Affected Software

Name Vendor Start Version End Version
Gitlab Gitlab * 15.1.6 (excluding)
Gitlab Gitlab 15.2 (including) 15.2.4 (excluding)
Gitlab Gitlab 15.3 (including) 15.3.2 (excluding)
Gitlab Ubuntu esm-apps/xenial *
Gitlab Ubuntu trusty *
Gitlab Ubuntu xenial *

References