GitLab Vulnerability: SSRF Attack via Prometheus Integration

CVE-2021-22178 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N

An issue has been discovered in GitLab affecting all versions starting from 13.2. Gitlab was vulnerable to SRRF attack through the Prometheus integration.

Learn more about our Web Application Penetration Testing UK.