Описание
GitLab before 12.8.2 allows Information Disclosure. Badge images were not being proxied, causing mixed content warnings as well as leaking the IP address of the user.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| gitlab | fixed | 12.6.8-1 | experimental | package |
| gitlab | fixed | 12.6.8-3 | package |
Примечания
https://about.gitlab.com/releases/2020/03/04/gitlab-12-dot-8-dot-2-released/
EPSS
Процентиль: 24%
0.00077
Низкий
Связанные уязвимости
CVSS3: 7.5
ubuntu
больше 5 лет назад
GitLab before 12.8.2 allows Information Disclosure. Badge images were not being proxied, causing mixed content warnings as well as leaking the IP address of the user.
CVSS3: 7.5
nvd
больше 5 лет назад
GitLab before 12.8.2 allows Information Disclosure. Badge images were not being proxied, causing mixed content warnings as well as leaking the IP address of the user.
CVSS3: 7.5
github
около 3 лет назад
GitLab before 12.8.2 allows Information Disclosure. Badge images were not being proxied, causing mixed content warnings as well as leaking the IP address of the user.
EPSS
Процентиль: 24%
0.00077
Низкий