CVE-2017-0916

CVE-2017-0916

Vendor Gitlab
Product GitLab Community and Enterprise Editions
Weakness CWE-77
Published March 21, 2018
Last update August 5, 2024

CVSS base score

What the vulnerability does

01Description

Gitlab Community Edition version 10.3 is vulnerable to a lack of input validation in the system_hook_push queue through web hook component resulting in remote code execution.

Key dates

02Disclosure timeline

March 21, 2018 CVE published
August 5, 2024 Record updated