Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2021-39919

Опубликовано: 13 дек. 2021
Источник: debian
EPSS Низкий

Описание

In all versions of GitLab CE/EE starting version 14.0 before 14.3.6, all versions starting from 14.4 before 14.4.4, all versions starting from 14.5 before 14.5.2, the reset password token and new user email token are accidentally logged which may lead to information disclosure.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
gitlabfixed15.10.8+ds1-2package

EPSS

Процентиль: 21%
0.00068
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2021-39919

CVSS3: 4.4
ubuntu
больше 3 лет назад

In all versions of GitLab CE/EE starting version 14.0 before 14.3.6, all versions starting from 14.4 before 14.4.4, all versions starting from 14.5 before 14.5.2, the reset password token and new user email token are accidentally logged which may lead to information disclosure.

nvd логотип

CVE-2021-39919

CVSS3: 4.4
nvd
больше 3 лет назад

In all versions of GitLab CE/EE starting version 14.0 before 14.3.6, all versions starting from 14.4 before 14.4.4, all versions starting from 14.5 before 14.5.2, the reset password token and new user email token are accidentally logged which may lead to information disclosure.

github логотип

GHSA-xh8q-q4r3-6x29

github
больше 3 лет назад

In all versions of GitLab CE/EE starting version 14.0 before 14.3.6, all versions starting from 14.4 before 14.4.4, all versions starting from 14.5 before 14.5.2, the reset password token and new user email token are accidentally logged which may lead to information disclosure.

EPSS

Процентиль: 21%
0.00068
Низкий