CVE-2023-1648

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2023-1648
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2023-0326. Reason: This candidate is a duplicate of CVE-2023-0326. Notes: All CVE users should reference CVE-2023-0326 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.
CVSS

No CVSS.

References

No reference.

Configurations

No configuration.

History

07 Nov 2023, 04:04

Type Values Removed Values Added
Summary ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2023-0326. Reason: This candidate is a duplicate of CVE-2023-0326. Notes: All CVE users should reference CVE-2023-0326 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage. Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2023-0326. Reason: This candidate is a duplicate of CVE-2023-0326. Notes: All CVE users should reference CVE-2023-0326 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.

05 Apr 2023, 22:15

Type Values Removed Values Added
CWE CWE-319
References
  • {'url': 'https://gitlab.com/gitlab-org/gitlab/-/issues/388132', 'name': 'https://gitlab.com/gitlab-org/gitlab/-/issues/388132', 'tags': ['Exploit', 'Vendor Advisory'], 'refsource': 'MISC'}
  • {'url': 'https://hackerone.com/reports/1826896', 'name': 'https://hackerone.com/reports/1826896', 'tags': ['Permissions Required'], 'refsource': 'MISC'}
  • {'url': 'https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-1648.json', 'name': 'https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-1648.json', 'tags': ['Vendor Advisory'], 'refsource': 'CONFIRM'}
CVSS v2 : unknown
v3 : 4.3 		v2 : unknown
v3 : unknown
CPE cpe:2.3:a:gitlab:dynamic_application_security_testing_analyzer:*:*:*:*:*:*:*:*
Summary An issue has been discovered in GitLab DAST API scanner affecting all versions starting from 1.6.50 before 2.11.0, where Authorization headers was leaked in vulnerability report evidence. ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2023-0326. Reason: This candidate is a duplicate of CVE-2023-0326. Notes: All CVE users should reference CVE-2023-0326 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.

03 Apr 2023, 18:19

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown 		v2 : unknown
v3 : 4.3
First Time Gitlab dynamic Application Security Testing Analyzer
Gitlab
CWE CWE-319
CPE cpe:2.3:a:gitlab:dynamic_application_security_testing_analyzer:*:*:*:*:*:*:*:*
References (MISC) https://gitlab.com/gitlab-org/gitlab/-/issues/388132 - (MISC) https://gitlab.com/gitlab-org/gitlab/-/issues/388132 - Exploit, Vendor Advisory
References (MISC) https://hackerone.com/reports/1826896 - (MISC) https://hackerone.com/reports/1826896 - Permissions Required
References (CONFIRM) https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-1648.json - (CONFIRM) https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-1648.json - Vendor Advisory

27 Mar 2023, 22:15

Type Values Removed Values Added
New CVE
Information

Published : 2023-03-27 22:15

Updated : 2024-04-16 18:13

NVD link : CVE-2023-1648

Mitre link : CVE-2023-1648

CVE.ORG link : CVE-2023-1648

JSON object : View

Products Affected

No product.

CWE

No CWE.