{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-21T17:08:40.842","vulnerabilities":[{"cve":{"id":"CVE-2023-4647","sourceIdentifier":"cve@gitlab.com","published":"2023-09-01T11:15:43.363","lastModified":"2025-05-05T14:12:17.193","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"An issue has been discovered in GitLab affecting all versions starting from 15.2 before 16.1.5, all versions starting from 16.2 before 16.2.5, all versions starting from 16.3 before 16.3.1 in which the projects API pagination can be skipped, potentially leading to DoS on certain instances."},{"lang":"es","value":"Se ha descubierto un problema en GitLab que afecta a todas las versiones desde la 15.2 anteriores a la 16.1.5, todas las versiones desde la 16.2 anteriores a la 16.2.5, todas las versiones desde la 16.3 anteriores a la 16.3.1 en las que la paginación de la API de proyectos puede omitirse, lo que podría llevar a un DoS en ciertas instancias."}],"metrics":{"cvssMetricV31":[{"source":"cve@gitlab.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":3.6},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"cve@gitlab.com","type":"Secondary","description":[{"lang":"en","value":"CWE-770"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-770"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*","versionStartIncluding":"15.2.0","versionEndExcluding":"16.1.5","matchCriteriaId":"0BB62198-2175-4319-9754-A55F5AA20EDD"},{"vulnerable":true,"criteria":"cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*","versionStartIncluding":"15.2.0","versionEndExcluding":"16.1.5","matchCriteriaId":"8EBBBC86-4F64-4EAB-AF11-5552ED8FD0F8"},{"vulnerable":true,"criteria":"cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*","versionStartIncluding":"16.2","versionEndExcluding":"16.2.5","matchCriteriaId":"18116007-7452-495F-80A1-39499882656E"},{"vulnerable":true,"criteria":"cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*","versionStartIncluding":"16.2","versionEndExcluding":"16.2.5","matchCriteriaId":"4E03E8BA-63C8-47D5-B5A1-26DF199E1F65"},{"vulnerable":true,"criteria":"cpe:2.3:a:gitlab:gitlab:16.3.0:*:*:*:community:*:*:*","matchCriteriaId":"EE9B8DE8-9990-494B-BDBE-F867DDBB9D57"},{"vulnerable":true,"criteria":"cpe:2.3:a:gitlab:gitlab:16.3.0:*:*:*:enterprise:*:*:*","matchCriteriaId":"08D6B555-39B6-493D-8460-3DC998BAF651"}]}]}],"references":[{"url":"https://gitlab.com/gitlab-org/gitlab/-/issues/414502","source":"cve@gitlab.com","tags":["Issue Tracking","Vendor Advisory"]},{"url":"https://gitlab.com/gitlab-org/gitlab/-/issues/414502","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Issue Tracking","Vendor Advisory"]}]}}]}