Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-w962-8hwv-w52p

Опубликовано: 25 июл. 2025
Источник: github
Github: Не прошло ревью
CVSS3: 4.3

Описание

An issue has been discovered in GitLab EE affecting all versions from 17.0 before 18.0.5, 18.1 before 18.1.3, and 18.2 before 18.2.1 that, under certain circumstances, could have allowed an attacker to access internal notes in GitLab Duo responses.

An issue has been discovered in GitLab EE affecting all versions from 17.0 before 18.0.5, 18.1 before 18.1.3, and 18.2 before 18.2.1 that, under certain circumstances, could have allowed an attacker to access internal notes in GitLab Duo responses.

EPSS

Процентиль: 1%
0.00012
Низкий

4.3 Medium

CVSS3

Дефекты

CWE-213

Связанные уязвимости

CVSS3: 4.3
ubuntu
13 дней назад

An issue has been discovered in GitLab EE affecting all versions from 17.0 before 18.0.5, 18.1 before 18.1.3, and 18.2 before 18.2.1 that, under certain circumstances, could have allowed an attacker to access internal notes in GitLab Duo responses.

CVSS3: 4.3
nvd
13 дней назад

An issue has been discovered in GitLab EE affecting all versions from 17.0 before 18.0.5, 18.1 before 18.1.3, and 18.2 before 18.2.1 that, under certain circumstances, could have allowed an attacker to access internal notes in GitLab Duo responses.

CVSS3: 4.3
debian
13 дней назад

An issue has been discovered in GitLab EE affecting all versions from ...

CVSS3: 4.3
fstec
14 дней назад

Уязвимость программной платформы на базе git для совместной работы над кодом GitLab, связанная с недостаточной защитой служебных данных, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации

EPSS

Процентиль: 1%
0.00012
Низкий

4.3 Medium

CVSS3

Дефекты

CWE-213