CVE-2017-0927

Опубликовано: 21 мар. 2018

Источник: debian

EPSS Низкий

Описание

Gitlab Community Edition version 10.3 is vulnerable to an improper authorization issue in the deployment keys component resulting in unauthorized use of deployment keys by guest users.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
gitlab	fixed	10.5.5+dfsg-1		package
gitlab	not-affected		stretch	package

Примечания

https://about.gitlab.com/2018/01/16/gitlab-10-dot-3-dot-4-released/

EPSS

Процентиль: 27%

0.00095

Низкий

Связанные уязвимости

CVE-2017-0927

CVSS3: 6.5

ubuntu

больше 7 лет назад

Gitlab Community Edition version 10.3 is vulnerable to an improper authorization issue in the deployment keys component resulting in unauthorized use of deployment keys by guest users.

CVE-2017-0927

CVSS3: 6.5

nvd

больше 7 лет назад

Gitlab Community Edition version 10.3 is vulnerable to an improper authorization issue in the deployment keys component resulting in unauthorized use of deployment keys by guest users.

GHSA-9j4q-pv73-3355

CVSS3: 6.5

github

больше 3 лет назад

Gitlab Community Edition version 10.3 is vulnerable to an improper authorization issue in the deployment keys component resulting in unauthorized use of deployment keys by guest users.

EPSS

Процентиль: 27%

0.00095

Низкий