← Back to Search

GitLab (Community and Enterprise Editions)

2021-11-03 · Severity 6/10 — Medium · Ransomware
Incident Summary

GitHub Community and Enterprise Editions that utilize the ability to upload images through GitLab Workhorse are vulnerable to remote code execution. Workhorse passes image file extensions through Exif

Sources
https://www.cisa.gov/known-exploited-vulnerabilities-catalog
Details
Records Affected
Unknown
Industry
Technology
Headquarters
Date Reported
2021-11-03
Related Breaches

No related breaches in the last 90 days.