exploitDog

GHSA-45jj-6gxc-rh25

Опубликовано: 07 дек. 2021

Источник: github

Github: Не прошло ревью

Описание

It was possible to bypass 2FA for LDAP users and access some specific pages with Basic Authentication in GitLab 14.1.1 and above.

It was possible to bypass 2FA for LDAP users and access some specific pages with Basic Authentication in GitLab 14.1.1 and above.

Ссылки

EPSS

Процентиль: 19%

0.0006

Низкий

CVE ID

Дефекты

CWE-287

Связанные уязвимости

CVE-2021-39890

CVSS3: 3.1

ubuntu

около 4 лет назад

It was possible to bypass 2FA for LDAP users and access some specific pages with Basic Authentication in GitLab 14.1.1 and above.

CVE-2021-39890

CVSS3: 3.1

nvd

около 4 лет назад

It was possible to bypass 2FA for LDAP users and access some specific pages with Basic Authentication in GitLab 14.1.1 and above.

CVE-2021-39890

CVSS3: 3.1

debian

около 4 лет назад

It was possible to bypass 2FA for LDAP users and access some specific ...

EPSS

Процентиль: 19%

0.0006

Низкий

CVE ID

Дефекты

CWE-287