CVE-2024-9367 – This vulnerability in GitLab CE/EE allows attac... (How to Fix)

Q: What is the severity of CVE-2024-9367?

CVE-2024-9367 has a CVSS score of 4.3 (MEDIUM). This vulnerability in GitLab CE/EE allows attackers to cause uncontrolled CPU consumption by exploiting template parsing during changelog generation, potentially leading to Denial of Service (DoS). It affects all GitLab instances running vulnerable versions, potentially disrupting service availability.

📋 TL;DR

This vulnerability in GitLab CE/EE allows attackers to cause uncontrolled CPU consumption by exploiting template parsing during changelog generation, potentially leading to Denial of Service (DoS). It affects all GitLab instances running vulnerable versions, potentially disrupting service availability.

💻 Affected Systems

Products:

GitLab Community Edition (CE)
GitLab Enterprise Edition (EE)

Versions: All versions from 13.9 before 17.4.6, 17.5 before 17.5.4, and 17.6 before 17.6.2

Operating Systems: All supported platforms

Default Config Vulnerable: ⚠️ Yes

Notes: Affects all installations with changelog generation enabled (default).

📦 What is this software?

Gitlab by Gitlab

GitLab is a complete DevOps platform providing source code management, CI/CD pipelines, security scanning, container registry, and collaboration tools used by millions of developers and thousands of enterprises worldwide. As both a cloud-hosted SaaS offering (GitLab.com) and self-managed software, G...

Learn more about Gitlab →

Gitlab by Gitlab

GitLab is a complete DevOps platform providing source code management, CI/CD pipelines, security scanning, container registry, and collaboration tools used by millions of developers and thousands of enterprises worldwide. As both a cloud-hosted SaaS offering (GitLab.com) and self-managed software, G...

Learn more about Gitlab →

Gitlab by Gitlab

GitLab is a complete DevOps platform providing source code management, CI/CD pipelines, security scanning, container registry, and collaboration tools used by millions of developers and thousands of enterprises worldwide. As both a cloud-hosted SaaS offering (GitLab.com) and self-managed software, G...

Learn more about Gitlab →

Gitlab by Gitlab

GitLab is a complete DevOps platform providing source code management, CI/CD pipelines, security scanning, container registry, and collaboration tools used by millions of developers and thousands of enterprises worldwide. As both a cloud-hosted SaaS offering (GitLab.com) and self-managed software, G...

Learn more about Gitlab →

Gitlab by Gitlab

GitLab is a complete DevOps platform providing source code management, CI/CD pipelines, security scanning, container registry, and collaboration tools used by millions of developers and thousands of enterprises worldwide. As both a cloud-hosted SaaS offering (GitLab.com) and self-managed software, G...

Learn more about Gitlab →

Gitlab by Gitlab

GitLab is a complete DevOps platform providing source code management, CI/CD pipelines, security scanning, container registry, and collaboration tools used by millions of developers and thousands of enterprises worldwide. As both a cloud-hosted SaaS offering (GitLab.com) and self-managed software, G...

Learn more about Gitlab →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete service unavailability due to CPU exhaustion, preventing legitimate users from accessing GitLab services.

🟠

Likely Case

Performance degradation and intermittent service disruptions affecting repository operations and CI/CD pipelines.

🟢

If Mitigated

Minimal impact with proper rate limiting, resource monitoring, and network segmentation in place.

🌐 Internet-Facing: HIGH

🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: LIKELY

Unauthenticated Exploit: ✅ No

Complexity: LOW

Exploitation requires authenticated access to trigger template parsing. The vulnerability is in the changelog generation feature.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 17.4.6, 17.5.4, or 17.6.2

Vendor Advisory: https://gitlab.com/gitlab-org/gitlab/-/issues/496631

Restart Required: Yes

Instructions:

1. Backup your GitLab instance. 2. Update to GitLab 17.4.6, 17.5.4, or 17.6.2 depending on your current version. 3. Restart GitLab services. 4. Verify the update was successful.

🔧 Temporary Workarounds

Disable Changelog Generation

linux

Temporarily disable changelog generation feature to prevent exploitation.

gitlab-rails runner "ApplicationSetting.current.update!(changelog_enabled: false)"

Implement Rate Limiting

all

Add rate limiting on API endpoints related to changelog generation.

Configure in GitLab's rate limiting settings: Admin Area > Settings > Network > User and IP rate limits

🧯 If You Can't Patch

Implement strict network segmentation to limit access to GitLab instance
Enable comprehensive monitoring for CPU spikes and implement alerting

🔍 How to Verify

Check if Vulnerable:

Check GitLab version: if running 13.9-17.4.5, 17.5.0-17.5.3, or 17.6.0-17.6.1, you are vulnerable.

Check Version:

sudo gitlab-rake gitlab:env:info | grep 'GitLab version'

Verify Fix Applied:

Verify GitLab version is 17.4.6, 17.5.4, or 17.6.2 or higher.

📡 Detection & Monitoring

Log Indicators:

Unusual CPU spikes
Multiple failed changelog generation attempts
High resource consumption in sidekiq logs

Network Indicators:

Increased traffic to /api/v4/projects/*/repository/changelog endpoints
Abnormal request patterns

SIEM Query:

source="gitlab.log" AND ("changelog" OR "template parsing") AND (error OR timeout OR "high cpu")

📊 Metadata

CVE ID: CVE-2024-9367

CVSS v3 Score: 4.3 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

CWE: CWE-770

Published: December 12, 2024

Last Updated: July 11, 2025

🔗 References

https://gitlab.com/gitlab-org/gitlab/-/issues/496631 Exploit,Issue Tracking,Vendor Advisory
https://hackerone.com/reports/2735311 Permissions Required

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2024-9367, you might also want to check these: