THREATOPS
THREAT OPSCVEs › CVE-2021-39935

CVE-2021-39935 — GitLab Community and Enterprise Editions Server-Side Request Forgery (SSRF) Vulnerability

CISA KEVExploited: confirmedGitLab

GitLab Community and Enterprise Editions contain a server-side request forgery vulnerability which could allow unauthorized external users to perform Server Side Requests via the CI Lint API.

Vulnerability details