CVE-2018-18843

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2018-18843

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-18843.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2018-18843

Published

2018-12-04T23:29:00.833Z

Modified

2026-04-10T04:07:22.906404Z

Severity

10.0 (Critical) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

The Kubernetes integration in GitLab Enterprise Edition 11.x before 11.2.8, 11.3.x before 11.3.9, and 11.4.x before 11.4.4 has SSRF.

References

Affected packages

Git / gitlab.com/gitlab-org/gitlab

Affected ranges

Type

GIT

Repo

https://gitlab.com/gitlab-org/gitlab

Events

Introduced

c6f72ac9a88521257991aa9a0cc6d558126f5bb9

Fixed

7b0ed3e6f5294573c8914573e0f6dfd5ce793926

Introduced

1bbe39452664021af90851aef8527ce5e850343e

Fixed

f1892e0a6f8fd7dd32181868e88f1c86bc40cf36

Introduced

cfe266cbac3c5d413e9c061fff420630e517005f

Fixed

e325c5f2980505900f8b87fc895b820e43d66586

Database specific

{
    "versions": [
        {
            "introduced": "11.0.0"
        },
        {
            "fixed": "11.2.8"
        },
        {
            "introduced": "11.3.0"
        },
        {
            "fixed": "11.3.9"
        },
        {
            "introduced": "11.4.0"
        },
        {
            "fixed": "11.4.4"
        }
    ]
}

Affected versions

v11.*

v11.4.0-ee

v11.4.1-ee

v11.4.2-ee

v11.4.3-ee

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-18843.json"