Cyber Resilience

CVE-2024-7110

MediumRCE

Published: 22 August 2024

Published
22 August 2024
Modified
11 September 2024
KEV Added
Patch
CVSS Score v3.1 6.4 CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:N
EPSS Score 0.0010 27.3th percentile
Risk Priority 13 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2024-7110 is a medium-severity Command Injection (CWE-77) vulnerability in Gitlab Gitlab. Its CVSS base score is 6.4 (Medium).

Operationally, exploitation aligns with the MITRE ATT&CK technique Poisoned Pipeline Execution (T1677); ranked at the 27.3th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.

This vulnerability is AI-related — categorised as Enterprise AI Assistants; in the LLM/Generative AI Risks risk domain; MITRE ATLAS techniques in scope: Direct (AML.T0051.000).

EU & UK References

Vulnerability details

An issue was discovered in GitLab EE affecting all versions starting 17.0 to 17.1.6, 17.2 prior to 17.2.4, and 17.3 prior to 17.3.1 allows an attacker to execute arbitrary command in a victim's pipeline through prompt injection.

CWE(s)

AI Security AnalysisAI

AI Category
Enterprise AI Assistants
Risk Domain
LLM/Generative AI Risks
OWASP Top 10 for LLMs 2025
None mapped
Classification Reason
GitLab EE's 'Resolve Vulnerability' feature integrates an LLM (Anthropic) to generate code patches from SAST reports, making it an enterprise AI assistant vulnerable to prompt injection attacks via crafted reports.

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1677 Poisoned Pipeline Execution Execution
Adversaries may manipulate continuous integration / continuous development (CI/CD) processes by injecting malicious code into the build process.
Why these techniques?

CVE-2024-7110 enables prompt injection in GitLab's 'Resolve Vulnerability' feature via crafted SAST reports, causing the LLM to generate malicious CI pipeline code that executes arbitrary commands in the victim's context, directly facilitating Poisoned Pipeline Execution (T1677).

MITRE ATLAS TechniquesAI

MITRE ATLAS techniques

AML.T0051.000: Direct

Affected Assets

gitlab
gitlab
17.0.0 — 17.1.6 · 17.2.0 — 17.2.4 · 17.3.0 — 17.3.1

Mitigating Controls

No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.

References