Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-xfxc-c47w-9432

Опубликовано: 24 мая 2022
Источник: github
Github: Не прошло ревью
CVSS3: 4.3

Описание

An improper access control flaw in GitLab CE/EE since version 13.9 exposes private email address of Issue and Merge Requests assignee to Webhook data consumers

An improper access control flaw in GitLab CE/EE since version 13.9 exposes private email address of Issue and Merge Requests assignee to Webhook data consumers

Ссылки

EPSS

Процентиль: 45%
0.00219
Низкий

4.3 Medium

CVSS3

CVE ID

CVE-2021-39911

Дефекты

CWE-863

Связанные уязвимости

ubuntu логотип

CVE-2021-39911

CVSS3: 1.7
ubuntu
больше 3 лет назад

An improper access control flaw in all versions of GitLab CE/EE starting from 13.9 before 14.2.6, all versions starting from 14.3 before 14.3.4, and all versions starting from 14.4 before 14.4.1 exposes private email address of Issue and Merge Requests assignee to Webhook data consumers

nvd логотип

CVE-2021-39911

CVSS3: 1.7
nvd
больше 3 лет назад

An improper access control flaw in all versions of GitLab CE/EE starting from 13.9 before 14.2.6, all versions starting from 14.3 before 14.3.4, and all versions starting from 14.4 before 14.4.1 exposes private email address of Issue and Merge Requests assignee to Webhook data consumers

debian логотип

CVE-2021-39911

CVSS3: 1.7
debian
больше 3 лет назад

An improper access control flaw in all versions of GitLab CE/EE starti ...

EPSS

Процентиль: 45%
0.00219
Низкий

4.3 Medium

CVSS3

CVE ID

CVE-2021-39911

Дефекты

CWE-863