Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2021-39891

Опубликовано: 05 окт. 2021
Источник: debian

Описание

In all versions of GitLab CE/EE since version 8.0, access tokens created as part of admin's impersonation of a user are not cleared at the end of impersonation which may lead to unnecessary sensitive info disclosure.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
gitlabfixed15.10.8+ds1-2package

Связанные уязвимости

ubuntu логотип

CVE-2021-39891

CVSS3: 5.9
ubuntu
около 4 лет назад

In all versions of GitLab CE/EE since version 8.0, access tokens created as part of admin's impersonation of a user are not cleared at the end of impersonation which may lead to unnecessary sensitive info disclosure.

nvd логотип

CVE-2021-39891

CVSS3: 5.9
nvd
около 4 лет назад

In all versions of GitLab CE/EE since version 8.0, access tokens created as part of admin's impersonation of a user are not cleared at the end of impersonation which may lead to unnecessary sensitive info disclosure.

github логотип

GHSA-xq89-553h-3j4m

CVSS3: 4.9
github
больше 3 лет назад

In all versions of GitLab CE/EE since version 8.0, access tokens created as part of admin's impersonation of a user are not cleared at the end of impersonation which may lead to unnecessary sensitive info disclosure.