Home

Description

An issue was discovered in GitLab CE/EE affecting all versions prior to 16.11.6, starting from 17.0 prior to 17.0.4, and starting from 17.1 prior to 17.1.2, which allows a subdomain takeover in GitLab Pages.

PUBLISHED Reserved 2024-05-30 | Published 2025-02-05 | Updated 2025-02-05 | Assigner GitLab




LOW: 3.5CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N

Problem types

CWE-1023: Incomplete Comparison with Missing Factors

Product status

Default status
unaffected

0.0 (semver) before 16.11.6
affected

17.0 (semver) before 17.0.4
affected

17.1 (semver) before 17.1.2
affected

Credits

Thanks [fdeleite](https://hackerone.com/fdeleite) for reporting this vulnerability through our HackerOne bug bounty program finder

References

about.gitlab.com/...10/patch-release-gitlab-17-1-2-released/ release-notes

gitlab.com/gitlab-org/gitlab/-/issues/464558 (GitLab Issue #464558) issue-tracking permissions-required

hackerone.com/reports/2523654 (HackerOne Bug Bounty Report #2523654) technical-description exploit permissions-required

cve.org (CVE-2024-5528)

nvd.nist.gov (CVE-2024-5528)

Download JSON