Vulnerability Description
In all versions of GitLab CE/EE since version 7.7, the application may let a malicious user create an OAuth client application with arbitrary scope names which may allow the malicious user to trick unsuspecting users to authorize the malicious client application using the spoofed scope name and description.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Gitlab | Gitlab | >= 7.7.0, < 14.1.7 |
References
- https://gitlab.com/gitlab-org/cves/-/blob/master/2021/CVE-2021-39881.jsonVendor Advisory
- https://gitlab.com/gitlab-org/gitlab/-/issues/26695Broken Link
- https://hackerone.com/reports/494530Permissions RequiredThird Party Advisory
- https://gitlab.com/gitlab-org/cves/-/blob/master/2021/CVE-2021-39881.jsonVendor Advisory
- https://gitlab.com/gitlab-org/gitlab/-/issues/26695Broken Link
- https://hackerone.com/reports/494530Permissions RequiredThird Party Advisory
FAQ
What is CVE-2021-39881?
CVE-2021-39881 is a vulnerability with a CVSS score of 3.5 (LOW). In all versions of GitLab CE/EE since version 7.7, the application may let a malicious user create an OAuth client application with arbitrary scope names which may allow the malicious user to trick un...
How severe is CVE-2021-39881?
CVE-2021-39881 has been rated LOW with a CVSS base score of 3.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2021-39881?
Check the references section above for vendor advisories and patch information. Affected products include: Gitlab Gitlab.