Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2024-7057

Опубликовано: 25 июл. 2024
Источник: debian
EPSS Низкий

Описание

An information disclosure vulnerability in GitLab CE/EE affecting all versions starting from 16.7 prior to 17.0.5, starting from 17.1 prior to 17.1.3, and starting from 17.2 prior to 17.2.1 where job artifacts can be inappropriately exposed to users lacking the proper authorization level.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
gitlabfixed17.3.5-2package

EPSS

Процентиль: 15%
0.0005
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2024-7057

CVSS3: 4.3
ubuntu
11 месяцев назад

An information disclosure vulnerability in GitLab CE/EE affecting all versions starting from 16.7 prior to 17.0.5, starting from 17.1 prior to 17.1.3, and starting from 17.2 prior to 17.2.1 where job artifacts can be inappropriately exposed to users lacking the proper authorization level.

nvd логотип

CVE-2024-7057

CVSS3: 4.3
nvd
11 месяцев назад

An information disclosure vulnerability in GitLab CE/EE affecting all versions starting from 16.7 prior to 17.0.5, starting from 17.1 prior to 17.1.3, and starting from 17.2 prior to 17.2.1 where job artifacts can be inappropriately exposed to users lacking the proper authorization level.

github логотип

GHSA-h3pp-hqpg-9qmw

CVSS3: 4.3
github
11 месяцев назад

An information disclosure vulnerability in GitLab CE/EE affecting all versions starting from 16.7 prior to 17.0.5, starting from 17.1 prior to 17.1.3, and starting from 17.2 prior to 17.2.1 where job artifacts can be inappropriately exposed to users lacking the proper authorization level.

fstec логотип

BDU:2024-06776

CVSS3: 4.3
fstec
около 1 года назад

Уязвимость программной платформы на базе git для совместной работы над кодом GitLab, связанная с недостатками процедуры авторизации, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации

EPSS

Процентиль: 15%
0.0005
Низкий