CVE-2023-3385

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in GitLab

CVSS 6.3 MEDIUMEPSS 0.7%CWE-22

Vexday Risk Score

13Low

SSVC decision (CISA)

Track

No exploitation signal → monitor

CVSS 6.3EPSS 0.7%KEV nãoPoC —Nuclei —Metasploit —Patch —

Lifecycle

01 Aug 2023Published on NVD

Recommendation: Monitor — no exploitation signal at the moment.

An issue has been discovered in GitLab affecting all versions starting from 8.10 before 16.0.8, all versions starting from 16.1 before 16.1.3, all versions starting from 16.2 before 16.2.2. Under specific circumstances, a user importing a project 'from export' could access and read unrelated files via uploading a specially crafted file. This was due to a bug in `tar`, fixed in [`tar-1.35`](https://lists.gnu.org/archive/html/info-gnu/2023-07/msg00005.html).

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N

Affected products

GitLab · GitLab

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://gitlab.com/gitlab-org/gitlab/-/issues/416161 https://hackerone.com/reports/2032730