GHSA-mq9g-jw9v-3pcf

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 4.3

Описание

In all versions of GitLab EE since version 8.13, an endpoint discloses names of private groups that have access to a project to low privileged users that are part of that project.

Ссылки

EPSS

Процентиль: 51%

0.00274

Низкий

4.3 Medium

CVSS3

CVE ID

CVE-2021-39884

Дефекты

CWE-668

Связанные уязвимости

CVE-2021-39884

CVSS3: 4.3

ubuntu

больше 4 лет назад

In all versions of GitLab EE since version 8.13, an endpoint discloses names of private groups that have access to a project to low privileged users that are part of that project.

CVE-2021-39884

CVSS3: 4.3

nvd

больше 4 лет назад

In all versions of GitLab EE since version 8.13, an endpoint discloses names of private groups that have access to a project to low privileged users that are part of that project.

CVE-2021-39884

CVSS3: 4.3

debian

больше 4 лет назад

In all versions of GitLab EE since version 8.13, an endpoint discloses ...

EPSS

Процентиль: 51%

0.00274

Низкий

4.3 Medium

CVSS3

CVE ID

CVE-2021-39884

Дефекты

CWE-668