exploitDog

GHSA-7q4r-xvh7-hj22

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 4.3

Описание

Improper authorization in GitLab 12.8+ allows a guest user in a private project to view tag data that should be inaccessible on the releases page

Improper authorization in GitLab 12.8+ allows a guest user in a private project to view tag data that should be inaccessible on the releases page

Ссылки

EPSS

Процентиль: 49%

0.00255

Низкий

4.3 Medium

CVSS3

CVE ID

Дефекты

CWE-200

CWE-863

Связанные уязвимости

CVE-2021-22172

CVSS3: 4.3

ubuntu

около 5 лет назад

Improper authorization in GitLab 12.8+ allows a guest user in a private project to view tag data that should be inaccessible on the releases page

CVE-2021-22172

CVSS3: 4.3

nvd

около 5 лет назад

Improper authorization in GitLab 12.8+ allows a guest user in a private project to view tag data that should be inaccessible on the releases page

CVE-2021-22172

CVSS3: 4.3

debian

около 5 лет назад

Improper authorization in GitLab 12.8+ allows a guest user in a privat ...

EPSS

Процентиль: 49%

0.00255

Низкий

4.3 Medium

CVSS3

CVE ID

Дефекты

CWE-200

CWE-863