Unlimited Resource Consumption Vulnerability in GitLab Pages

Unlimited Resource Consumption Vulnerability in GitLab Pages

CVE-2022-1121 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

A lack of appropriate timeouts in GitLab Pages included in GitLab CE/EE all versions prior to 14.7.7, 14.8 prior to 14.8.5, and 14.9 prior to 14.9.2 allows an attacker to cause unlimited resource consumption.

Learn more about our Web Application Penetration Testing UK.