{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-07T00:25:43.539","vulnerabilities":[{"cve":{"id":"CVE-2023-6051","sourceIdentifier":"cve@gitlab.com","published":"2023-12-15T16:15:46.490","lastModified":"2024-11-21T08:43:02.800","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"An issue has been discovered in GitLab CE/EE affecting all versions before 16.4.4, all versions starting from 16.5 before 16.5.4, all versions starting from 16.6 before 16.6.2. File integrity may be compromised when source code or installation packages are pulled from a specific tag."},{"lang":"es","value":"Se descubrió un problema en GitLab CE/EE que afecta a todas las versiones anteriores a 16.4.4, todas las versiones desde 15.5 anteriores a 16.5.4, todas las versiones desde 16.6 anteriores a 16.6.2. La integridad del archivo puede verse comprometida cuando el código fuente o los paquetes de instalación se extraen de una etiqueta específica."}],"metrics":{"cvssMetricV31":[{"source":"cve@gitlab.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:N","baseScore":5.7,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":2.1,"impactScore":3.6},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"cve@gitlab.com","type":"Secondary","description":[{"lang":"en","value":"CWE-94"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-94"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*","versionEndExcluding":"16.4.4","matchCriteriaId":"7A118925-6ADE-455D-BACF-62FF89F2460D"},{"vulnerable":true,"criteria":"cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*","versionEndExcluding":"16.4.4","matchCriteriaId":"8C804A75-C14D-4AD1-8347-3F85B8889C5C"},{"vulnerable":true,"criteria":"cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*","versionStartIncluding":"16.5.0","versionEndExcluding":"16.5.4","matchCriteriaId":"3C213E8A-B47E-4D1F-8253-90CB866744F0"},{"vulnerable":true,"criteria":"cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*","versionStartIncluding":"16.5.0","versionEndExcluding":"16.5.4","matchCriteriaId":"E6EBFF85-99EE-48D7-8991-02AA59E78374"},{"vulnerable":true,"criteria":"cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*","versionStartIncluding":"16.6.0","versionEndExcluding":"16.6.2","matchCriteriaId":"17596227-79F6-439A-89EC-B87F03EF73AC"},{"vulnerable":true,"criteria":"cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*","versionStartIncluding":"16.6.0","versionEndExcluding":"16.6.2","matchCriteriaId":"53E94AC5-C346-4511-B68C-DC0D86E575FC"}]}]}],"references":[{"url":"https://gitlab.com/gitlab-org/gitlab/-/issues/431345","source":"cve@gitlab.com","tags":["Broken Link"]},{"url":"https://hackerone.com/reports/2237165","source":"cve@gitlab.com","tags":["Permissions Required"]},{"url":"https://gitlab.com/gitlab-org/gitlab/-/issues/431345","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link"]},{"url":"https://hackerone.com/reports/2237165","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Permissions Required"]}]}}]}