CVE-2017-0917 : Gitlab Community Edition version 10.2.4 is vulnerable to lack of input validatio

Gitlab Community Edition version 10.2.4 is vulnerable to lack of input validation in the CI job component resulting in persistent cross site scripting.

Published 2018-03-21 20:29:00

Updated 2019-10-09 23:21:13

Source HackerOne

View at NVD, CVE.org

Vulnerability category: Cross site scripting (XSS)Input validation

Products affected by CVE-2017-0917

Debian » Debian Linux » Version: 9.0
cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
Matching versions
Gitlab » Gitlab » Enterprise Edition
Versions from including (>=) 10.3.0 and up to, including, (<=) 10.3.3
cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*
Matching versions
Gitlab » Gitlab » Enterprise Edition
Versions from including (>=) 10.1.0 and up to, including, (<=) 10.1.5
cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*
Matching versions
Gitlab » Gitlab » Community Edition
Versions from including (>=) 10.1.0 and up to, including, (<=) 10.1.5
cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*
Matching versions
Gitlab » Gitlab » Community Edition
Versions from including (>=) 10.2.0 and up to, including, (<=) 10.2.5
cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*
Matching versions
Gitlab » Gitlab » Community Edition
Versions from including (>=) 10.3.0 and up to, including, (<=) 10.3.3
cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*
Matching versions
Gitlab » Gitlab » Enterprise Edition
Versions from including (>=) 10.2.0 and up to, including, (<=) 10.2.5
cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2017-0917

EPSS FAQ

0.08%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 25 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2017-0917

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
4.3	MEDIUM	AV:N/AC:M/Au:N/C:N/I:P/A:N	8.6	2.9	NIST
Access Vector: Network Access Complexity: Medium Authentication: None Confidentiality Impact: None Integrity Impact: Partial Availability Impact: None
6.1	MEDIUM	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N	2.8	2.7	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: Required Scope: Changed Confidentiality: Low Integrity: Low Availability: None

CWE ids for CVE-2017-0917

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

Assigned by: nvd@nist.gov (Primary)
CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.
Assigned by:
- nvd@nist.gov (Primary)
- support@hackerone.com (Secondary)

References for CVE-2017-0917

https://www.debian.org/security/2018/dsa-4145

Third Party Advisory

CVEs referencing this url
https://hackerone.com/reports/299525

Sign in
Permissions Required
https://about.gitlab.com/2018/01/16/gitlab-10-dot-3-dot-4-released/

GitLab Security Release: 10.3.4, 10.2.6, and 10.1.6 | GitLab
Vendor Advisory

CVEs referencing this url

Jump to

Vulnerability Details : CVE-2017-0917

Products affected by CVE-2017-0917

Exploit prediction scoring system (EPSS) score for CVE-2017-0917

CVSS scores for CVE-2017-0917

CWE ids for CVE-2017-0917

References for CVE-2017-0917