exploitDog

GHSA-p6pm-7qxv-f8f3

Опубликовано: 14 дек. 2021

Источник: github

Github: Не прошло ревью

Описание

Improper access control in GitLab CE/EE affecting all versions starting from 10.7 before 14.3.6, all versions starting from 14.4 before 14.4.4, all versions starting from 14.5 before 14.5.2, allows an attacker in possession of a deploy token to access a project's disabled wiki.

Improper access control in GitLab CE/EE affecting all versions starting from 10.7 before 14.3.6, all versions starting from 14.4 before 14.4.4, all versions starting from 14.5 before 14.5.2, allows an attacker in possession of a deploy token to access a project's disabled wiki.

Ссылки

EPSS

Процентиль: 56%

0.00342

Низкий

CVE ID

Дефекты

CWE-863

Связанные уязвимости

CVE-2021-39936

CVSS3: 3.5

ubuntu

около 4 лет назад

Improper access control in GitLab CE/EE affecting all versions starting from 10.7 before 14.3.6, all versions starting from 14.4 before 14.4.4, all versions starting from 14.5 before 14.5.2, allows an attacker in possession of a deploy token to access a project's disabled wiki.

CVE-2021-39936

CVSS3: 3.5

nvd

около 4 лет назад

Improper access control in GitLab CE/EE affecting all versions starting from 10.7 before 14.3.6, all versions starting from 14.4 before 14.4.4, all versions starting from 14.5 before 14.5.2, allows an attacker in possession of a deploy token to access a project's disabled wiki.

CVE-2021-39936

CVSS3: 3.5

debian

около 4 лет назад

Improper access control in GitLab CE/EE affecting all versions startin ...

EPSS

Процентиль: 56%

0.00342

Низкий

CVE ID

Дефекты

CWE-863