exploitDog

GHSA-2cg5-9vjw-w6vg

Опубликовано: 06 мар. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 4.3

Описание

Improper authorization in GitLab EE affecting all versions from 17.7 prior to 17.7.6, 17.8 prior to 17.8.4, 17.9 prior to 17.9.1 allow users with limited permissions to access to potentially sensitive project analytics data.

Improper authorization in GitLab EE affecting all versions from 17.7 prior to 17.7.6, 17.8 prior to 17.8.4, 17.9 prior to 17.9.1 allow users with limited permissions to access to potentially sensitive project analytics data.

Ссылки

EPSS

Процентиль: 12%

0.00039

Низкий

4.3 Medium

CVSS3

CVE ID

Дефекты

CWE-863

Связанные уязвимости

CVE-2025-2045

CVSS3: 4.3

nvd

11 месяцев назад

Improper authorization in GitLab EE affecting all versions from 17.7 prior to 17.7.6, 17.8 prior to 17.8.4, 17.9 prior to 17.9.1 allow users with limited permissions to access to potentially sensitive project analytics data.

CVE-2025-2045

CVSS3: 4.3

debian

11 месяцев назад

Improper authorization in GitLab EE affecting all versions from 17.7 p ...

EPSS

Процентиль: 12%

0.00039

Низкий

4.3 Medium

CVSS3

CVE ID

Дефекты

CWE-863