Security Advisory

CVE-2021-39942

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-01-18 16:52:12

Last updated 2024-08-04 02:20:34

Assigner GitLab

State PUBLISHED

Description

A denial of service vulnerability in GitLab CE/EE affecting all versions starting from 12.0 before 14.3.6, all versions starting from 14.4 before 14.4.4, all versions starting from 14.5 before 14.5.2, allows low-privileged users to bypass file size limits in the NPM package repository to potentially cause denial of service.

← Browse all CVEs View on cve.org ↗