GHSA-96jg-v9jf-qq4p

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 5.3

Описание

In all versions of GitLab CE/EE since version 13.6, it is possible to see pending invitations of any public group or public project by visiting an API endpoint.

Ссылки

EPSS

Процентиль: 53%

0.00299

Низкий

5.3 Medium

CVSS3

CVE ID

CVE-2021-39875

Дефекты

CWE-200

Связанные уязвимости

CVE-2021-39875

CVSS3: 5.3

ubuntu

больше 4 лет назад

In all versions of GitLab CE/EE since version 13.6, it is possible to see pending invitations of any public group or public project by visiting an API endpoint.

CVE-2021-39875

CVSS3: 5.3

nvd

больше 4 лет назад

In all versions of GitLab CE/EE since version 13.6, it is possible to see pending invitations of any public group or public project by visiting an API endpoint.

CVE-2021-39875

CVSS3: 5.3

debian

больше 4 лет назад

In all versions of GitLab CE/EE since version 13.6, it is possible to ...

EPSS

Процентиль: 53%

0.00299

Низкий

5.3 Medium

CVSS3

CVE ID

CVE-2021-39875

Дефекты

CWE-200