What is CVE-2022-2884?

CVE-2022-2884 is a critical-severity vulnerability in Gitlab. CVSS score: 9.9/10. Published 2022-10-17.

How severe is CVE-2022-2884?

Critical severity. CVSS v3 base score is 9.9 out of 10.

Is CVE-2022-2884 known to be exploited?

10 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Gitlab

CVE-2022-2884

A vulnerability in GitLab CE/EE affecting all versions from 11.3.4 prior to 15.1.5, 15.2 to 15.2.3, 15.3 to 15.3 to 15.3.1 allows an an authenticated user to achieve remote code execution via the Import from GitHub API endpoint

EPSS: 0.774 (99.5th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 9.9 (Critical). Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H.

Affected products

Gitlab — versions >=11.3.4, <15.1.5, >=15.2, <15.2.3, >=15.3, <15.3.1

Public proof-of-concept exploits

m3ssap0/gitlab_rce_cve-2022-2884
ARPSyndicate/cvemon
Kreedman05/nto_
chftm/nto-cs-2024
k0mi-tg/CVE-POC
m3ssap0/gitlab_
manas3c/CVE-POC
nomi-sec/PoC-in-GitHub
whoforget/CVE-POC
youwizard/CVE-POC

References

gitlab.com/gitlab-org/gitlab/-/issues/371098
hackerone.com/reports/1672388
gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-2884.json
packetstormsecurity.com/files/171628/GitLab-15.3-Remote-Code-Execution.html

Frequently asked questions

What is CVE-2022-2884?: CVE-2022-2884 is a critical-severity vulnerability in Gitlab. CVSS score: 9.9/10. Published 2022-10-17.
How severe is CVE-2022-2884?: Critical severity. CVSS v3 base score is 9.9 out of 10.
Is CVE-2022-2884 known to be exploited?: 10 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.