Vulnerability feed

Vulnerability

CVE-2021-22205

Reference to the description:: https://nvd.nist.gov/vuln/detail/CVE-2021-22205
Description:: An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.9. GitLab was not properly validating image files that were passed to a file parser which resulted in a remote command execution.
Last updated date:: 07/12/2022

Reports

alt

ACTIVELY EXPLOITED

Type:: exploitation
Confidence:: HIGH
Date of publishing:: 10/25/2021
Reference url to background: https://security.humanativaspa.it/gitlab-ce-cve-2021-22205-in-the-wild/

Type:: exploitation
Confidence:: HIGH
Date of publishing:: 11/03/2021
Reference url to background: https://www.cisa.gov/known-exploited-vulnerabilities-catalog

Type:: exploit
Confidence:: HIGH
Date of publishing:: 06/05/2021
Reference url to background: https://github.com/mr-r3bot/Gitlab-CVE-2021-22205

Type:: exploit
Confidence:: HIGH
Date of publishing:: 10/28/2021
Reference url to background: https://github.com/RedTeamWing/CVE-2021-22205

Type:: exploit
Confidence:: HIGH
Date of publishing:: 10/28/2021
Reference url to background: https://github.com/XTeam-Wing/CVE-2021-22205

Type:: exploit
Confidence:: HIGH
Date of publishing:: 10/28/2021
Reference url to background: https://github.com/r0eXpeR/CVE-2021-22205

Type:: exploit
Confidence:: HIGH
Date of publishing:: 10/29/2021
Reference url to background: https://github.com/antx-code/CVE-2021-22205

Type:: exploit
Confidence:: HIGH
Date of publishing:: 10/29/2021
Reference url to background: https://github.com/Al1ex/CVE-2021-22205

Type:: exploit
Confidence:: HIGH
Date of publishing:: 10/30/2021
Reference url to background: https://github.com/whwlsfb/CVE-2021-22205

Type:: exploit
Confidence:: HIGH
Date of publishing:: 10/30/2021
Reference url to background: https://github.com/findneo/GitLab-preauth-RCE_CVE-2021-22205

Type:: exploit
Confidence:: HIGH
Date of publishing:: 10/31/2021
Reference url to background: https://github.com/Seals6/CVE-2021-22205

Type:: exploit
Confidence:: HIGH
Date of publishing:: 10/31/2021
Reference url to background: https://github.com/c0okB/CVE-2021-22205

Type:: exploit
Confidence:: HIGH
Date of publishing:: 11/01/2021
Reference url to background: https://github.com/shang159/CVE-2021-22205-getshell

Type:: exploit
Confidence:: HIGH
Date of publishing:: 11/03/2021
Reference url to background: https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/http/gitlab_exif_rce.rb

Type:: exploit
Confidence:: HIGH
Date of publishing:: 11/09/2021
Reference url to background: https://github.com/faisalfs10x/GitLab-CVE-2021-22205-scanner

Type:: exploit
Confidence:: HIGH
Date of publishing:: 11/11/2021
Reference url to background: https://github.com/inspiringz/CVE-2021-22205

Type:: exploit
Confidence:: HIGH
Date of publishing:: 11/25/2021
Reference url to background: https://github.com/pizza-power/Golang-CVE-2021-22205-POC

Type:: exploit
Confidence:: HIGH
Date of publishing:: 11/30/2021
Reference url to background: http://packetstormsecurity.com/files/164768/GitLab-Unauthenticated-Remote-ExifTool-Command-Injection.html

Type:: exploit
Confidence:: HIGH
Date of publishing:: 11/30/2021
Reference url to background: http://packetstormsecurity.com/files/164994/GitLab-13.10.2-Remote-Code-Execution.html

Type:: exploit
Confidence:: HIGH
Date of publishing:: 07/20/2022
Reference url to background: https://github.com/keven1z/CVE-2021-22205

Vulnerability Feed Contributors About Blog

@inTheWild

©2023 |