CVE-2021-39876

Опубликовано: 28 мар. 2022

Источник: debian

Описание

In all versions of GitLab CE/EE since version 11.3, the endpoint for auto-completing Assignee discloses the members of private groups.

Пакет	Статус	Версия исправления	Релиз	Тип
gitlab	fixed	15.10.8+ds1-2		package

CVE-2021-39876

CVSS3: 4.3

ubuntu

около 4 лет назад

In all versions of GitLab CE/EE since version 11.3, the endpoint for auto-completing Assignee discloses the members of private groups.

CVE-2021-39876

CVSS3: 4.3

nvd

около 4 лет назад

In all versions of GitLab CE/EE since version 11.3, the endpoint for auto-completing Assignee discloses the members of private groups.

GHSA-2p9m-5cj9-r9pf

CVSS3: 4.3

github

около 4 лет назад

In all versions of GitLab CE/EE since version 11.3, the endpoint for auto-completing Assignee discloses the members of private groups.