exploitDog

GHSA-6vv9-3qmw-8f45

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

Описание

GitLab CE/EE, versions 10.1 up to 11.x before 11.3.11, 11.4 before 11.4.8, and 11.5 before 11.5.1, are vulnerable to an insecure direct object reference issue that allows a user to make comments on a locked issue.

GitLab CE/EE, versions 10.1 up to 11.x before 11.3.11, 11.4 before 11.4.8, and 11.5 before 11.5.1, are vulnerable to an insecure direct object reference issue that allows a user to make comments on a locked issue.

Ссылки

EPSS

Процентиль: 34%

0.00132

Низкий

CVE ID

Связанные уязвимости

CVE-2018-19575

CVSS3: 4.3

ubuntu

почти 6 лет назад

GitLab CE/EE, versions 10.1 up to 11.x before 11.3.11, 11.4 before 11.4.8, and 11.5 before 11.5.1, are vulnerable to an insecure direct object reference issue that allows a user to make comments on a locked issue.

CVE-2018-19575

CVSS3: 4.3

nvd

почти 6 лет назад

GitLab CE/EE, versions 10.1 up to 11.x before 11.3.11, 11.4 before 11.4.8, and 11.5 before 11.5.1, are vulnerable to an insecure direct object reference issue that allows a user to make comments on a locked issue.

CVE-2018-19575

CVSS3: 4.3

debian

почти 6 лет назад

GitLab CE/EE, versions 10.1 up to 11.x before 11.3.11, 11.4 before 11. ...

EPSS

Процентиль: 34%

0.00132

Низкий

CVE ID