CVE-2023-2232
CVSS 3.1 Score 5.9 of 10 (medium)
Details
Published Jun 28, 2023
Updated: Jul 6, 2023
CWE ID 835
Summary
CVE-2023-2232 is a newly identified vulnerability in GitLab, affecting versions 15.10 through 16.0. This issue results in a Regular Expression Denial of Service (ReDoS) vulnerability within the Jira prefix. An attacker can exploit this flaw by crafting a specially crafted regular expression, leading to excessive CPU usage and potential denial of service. GitLab urges users to upgrade to the latest stable version to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- SoftEther VPN