GCVE - cpe:2.3:a:gitlab:dast:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:gitlab:dast:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Gitlab (`57573e99-56e6-5fad-895e-0ce7fffc5b90`)
Product	Dast (`56b67a2d-7479-5d6b-9fc6-8196f7018197`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2022-4317`	vulnerable	2026-06-03 14:48:35.484009	Details available MEDIUM (5) An issue has been discovered in GitLab DAST analyzer affecting all versions starting from 1.47 before 3.0.51, which sends custom request headers in redirects. Published: 2023-03-09T00:00:00.000Z Updated: 2025-02-28T17:26:25.536Z Open on db.gcve.eu Reference links https://gitlab.com/gitlab-org/gitlab/-/issues/384997 https://hackerone.com/reports/1767533 https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-4317.json	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-3767`	vulnerable	2026-06-03 14:47:59.276220	Details available HIGH (7.7) Missing validation in DAST analyzer affecting all versions from 1.11.0 prior to 3.0.32, allows custom request headers to be sent with every request, regardless of the host. Published: 2023-03-09T00:00:00.000Z Updated: 2025-02-28T17:28:45.941Z Open on db.gcve.eu Reference links https://gitlab.com/gitlab-org/gitlab/-/issues/377473 https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3767.json	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.