← back
CVE-2017-12426

CVE-2017-12426

EPSS 3.5%
GitLab Community Edition (CE) and Enterprise Edition (EE) before 8.17.8, 9.0.x before 9.0.13, 9.1.x before 9.1.10, 9.2.x before 9.2.10, 9.3.x before 9.3.10, and 9.4.x before 9.4.4 might allow remote attackers to execute arbitrary code via a crafted SSH URL in a project import.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://about.gitlab.com/2017/08/10/gitlab-9-dot-4-dot-4-released/https://www.mail-archive.com/linux-kernel%40vger.kernel.org/msg1466490.html