CVE-2021-39881 Information

Description

In all versions of GitLab CE/EE since version 7.7 the application may let a malicious user create an OAuth client application with arbitrary scope names which may allow the malicious user to trick unsuspecting users to authorize the malicious client application using the spoofed scope name and description.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N

Reference

https://hackerone.com/reports/494530 https://gitlab.com/gitlab-org/cves/-/blob/master/2021/CVE-2021-39881.json https://gitlab.com/gitlab-org/gitlab/-/issues/26695

Attack Complexity

LOW

Privileges Required

LOW

User Interaction Required

LOW

Scope

REQUIRED

Confidentiality Impact

UNCHANGED

Integrity Impact

NONE

Availability Impact

LOW

Base Score

NONE

Base Severity

3.5