Описание
GitLab 8.3 through 12.8.1 allows Information Disclosure. It was possible for certain non-members to access the Contribution Analytics page of a private group.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| gitlab | fixed | 12.6.8-1 | experimental | package |
| gitlab | fixed | 12.6.8-3 | package |
Примечания
https://about.gitlab.com/releases/2020/03/04/gitlab-12-dot-8-dot-2-released/
EPSS
Процентиль: 23%
0.00075
Низкий
Связанные уязвимости
CVSS3: 5.3
ubuntu
почти 6 лет назад
GitLab 8.3 through 12.8.1 allows Information Disclosure. It was possible for certain non-members to access the Contribution Analytics page of a private group.
CVSS3: 5.3
nvd
почти 6 лет назад
GitLab 8.3 through 12.8.1 allows Information Disclosure. It was possible for certain non-members to access the Contribution Analytics page of a private group.
github
больше 3 лет назад
GitLab 8.3 through 12.8.1 allows Information Disclosure. It was possible for certain non-members to access the Contribution Analytics page of a private group.
EPSS
Процентиль: 23%
0.00075
Низкий