{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-22T06:23:37.191","vulnerabilities":[{"cve":{"id":"CVE-2024-11129","sourceIdentifier":"cve@gitlab.com","published":"2025-04-10T13:15:43.993","lastModified":"2025-08-07T18:43:12.120","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"An issue has been discovered in GitLab EE affecting all versions from 17.1 before 17.8.7, 17.9 before  17.9.6, and 17.10 before 17.10.4. This allows attackers to perform targeted searches with sensitive keywords to get the count of issues containing the searched term.\""},{"lang":"es","value":" Se ha descubierto un problema en GitLab EE que afecta a todas las versiones desde la 17.1 hasta la 17.8.7, la 17.9 hasta la 17.9.6 y la 17.10 hasta la 17.10.4. Esto permite a los atacantes realizar búsquedas específicas con palabras clave sensibles para obtener el recuento de problemas que contienen el término buscado."}],"metrics":{"cvssMetricV31":[{"source":"cve@gitlab.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N","baseScore":6.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":1.8,"impactScore":4.0},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"cve@gitlab.com","type":"Secondary","description":[{"lang":"en","value":"CWE-209"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*","versionStartIncluding":"17.1.0","versionEndExcluding":"17.8.6","matchCriteriaId":"90FFEF88-9D28-4C80-A135-C4FE12395620"},{"vulnerable":true,"criteria":"cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*","versionStartIncluding":"17.1.0","versionEndExcluding":"17.8.7","matchCriteriaId":"2C53F271-B34B-479C-8061-39B81BD181F5"},{"vulnerable":true,"criteria":"cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*","versionStartIncluding":"17.9.0","versionEndExcluding":"17.9.6","matchCriteriaId":"DA3826E3-A00E-4E5A-81A0-28DCB2BE10B5"},{"vulnerable":true,"criteria":"cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*","versionStartIncluding":"17.9.0","versionEndExcluding":"17.9.6","matchCriteriaId":"2BE64DE3-7E01-4B8C-81D3-A1443D2450A3"},{"vulnerable":true,"criteria":"cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*","versionStartIncluding":"17.10.0","versionEndExcluding":"17.10.4","matchCriteriaId":"73742B4C-F768-4F0D-A34D-B551A3BC6177"},{"vulnerable":true,"criteria":"cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*","versionStartIncluding":"17.10.0","versionEndExcluding":"17.10.4","matchCriteriaId":"F95150D7-C98E-4177-AB2B-8E9B7100DF2D"}]}]}],"references":[{"url":"https://gitlab.com/gitlab-org/gitlab/-/issues/503722","source":"cve@gitlab.com","tags":["Broken Link"]},{"url":"https://hackerone.com/reports/2717400","source":"cve@gitlab.com","tags":["Permissions Required"]}]}}]}