GHSA-wjpf-p2m9-5wmv

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 5.3

Описание

In all versions of GitLab CE/EE since version 10.6, a project export leaks the external webhook token value which may allow access to the project which it was exported from.

Ссылки

EPSS

Процентиль: 53%

0.00301

Низкий

5.3 Medium

CVSS3

CVE ID

CVE-2021-39898

Дефекты

CWE-668

Связанные уязвимости

CVE-2021-39898

CVSS3: 3.7

nvd

больше 3 лет назад

In all versions of GitLab CE/EE since version 10.6, a project export leaks the external webhook token value which may allow access to the project which it was exported from.

CVE-2021-39898

CVSS3: 3.7

debian

больше 3 лет назад

In all versions of GitLab CE/EE since version 10.6, a project export l ...

EPSS

Процентиль: 53%

0.00301

Низкий

5.3 Medium

CVSS3

CVE ID

CVE-2021-39898

Дефекты

CWE-668