CVE-2017-0927

Опубликовано: 21 мар. 2018

Источник: debian

Описание

Gitlab Community Edition version 10.3 is vulnerable to an improper authorization issue in the deployment keys component resulting in unauthorized use of deployment keys by guest users.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
gitlab	fixed	10.5.5+dfsg-1		package
gitlab	not-affected		stretch	package

Примечания

https://about.gitlab.com/2018/01/16/gitlab-10-dot-3-dot-4-released/

Связанные уязвимости

CVE-2017-0927

CVSS3: 6.5

ubuntu

около 7 лет назад

Gitlab Community Edition version 10.3 is vulnerable to an improper authorization issue in the deployment keys component resulting in unauthorized use of deployment keys by guest users.

CVE-2017-0927

CVSS3: 6.5

nvd

около 7 лет назад

Gitlab Community Edition version 10.3 is vulnerable to an improper authorization issue in the deployment keys component resulting in unauthorized use of deployment keys by guest users.

GHSA-9j4q-pv73-3355

CVSS3: 6.5

github

около 3 лет назад

Gitlab Community Edition version 10.3 is vulnerable to an improper authorization issue in the deployment keys component resulting in unauthorized use of deployment keys by guest users.