KEVIntel
Back to KEVs
10.0
CVSS
Critical

CVE-2023-7028

PUBLISHED

Weak Password Recovery Mechanism for Forgotten Password in GitLab

Exploited in the wild Remote Low complexity No user interaction
Vendor
GitLab
Product
GitLab
Published
Jan 12, 2024
EPSS

Description

An issue has been discovered in GitLab CE/EE affecting all versions from 16.1 prior to 16.1.6, 16.2 prior to 16.2.9, 16.3 prior to 16.3.7, 16.4 prior to 16.4.5, 16.5 prior to 16.5.6, 16.6 prior to 16.6.4, and 16.7 prior to 16.7.2 in which user account password reset emails could be delivered to an unverified email address.

cisa nuclei_scanner nessus_scanner

CVSS scores

CVSS v3.1 10.0 Critical

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:N

Exploitation status

Exploited in the wild

Recorded 2024-05-01 00:00:00 UTC · Source

SSVC decision points

Exploitation
active
Automatable
Yes
Technical impact
total

References

Known exploited vulnerability sources

Catalogues that list this CVE as a known exploited vulnerability.

Source Added
CISA May 01, 2024

Scanner integrations

Scanner Reference Detected
Nuclei https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2023/CVE-2023-7028.yaml Apr 25, 2025
Nessus https://www.tenable.com/plugins/nessus/188030 Jan 13, 2024

Potential proof of concepts

These PoCs are unverified and could contain malware. Use at your own risk.

sariamubeen/CVE-2023-7028

github · Created 2025-02-17 02:15:26 UTC · 2 stars

soltanali0/CVE-2023-7028

github · Created 2024-07-25 11:39:01 UTC · 0 stars

Implementation and exploitation of CVE-2023-7028 account takeover vulnerability related to GO-TO CVE weekly articles of the 11th week.

thanhlam-attt/CVE-2023-7028

github · Created 2024-01-23 19:11:11 UTC · 2 stars

Vozec/CVE-2023-7028

github · Created 2024-01-12 18:29:27 UTC · 240 stars

This repository presents a proof-of-concept of CVE-2023-7028

duy-31/CVE-2023-7028

github · Created 2024-01-12 15:17:59 UTC · 3 stars

An issue has been discovered in GitLab CE/EE affecting all versions from 16.1 prior to 16.1.6, 16.2 prior to 16.2.9, 16.3 prior to 16.3.7, 16.4 prior to 16.4.5, 16.5 prior to 16.5.6, 16.6 prior to 16.6.4, and 16.7 prior to 16.7.2 in which user account password reset emails could be delivered to an unverified email address.

googlei1996/CVE-2023-7028

github · Created 2024-01-12 13:47:37 UTC · 0 stars

CVE-2023-7028 poc

RandomRobbieBF/CVE-2023-7028

github · Created 2024-01-12 10:53:50 UTC · 58 stars

CVE-2023-7028

Timeline

  • CVE ID Reserved

  • CVE Published to Public

  • Detected by Nessus

  • Added to KEVIntel

  • Detected by Nuclei