Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2019-15728

Опубликовано: 16 сент. 2019
Источник: nvd
CVSS3: 7.5
CVSS2: 5
EPSS Низкий

Описание

An issue was discovered in GitLab Community and Enterprise Edition 10.1 through 12.2.1. Protections against SSRF attacks on the Kubernetes integration are insufficient, which could have allowed an attacker to request any local network resource accessible from the GitLab server.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*
Версия от 10.1.0 (включая) до 12.0.8 (исключая)
cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*
Версия от 10.1.0 (включая) до 12.0.8 (исключая)
cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*
Версия от 12.1.0 (включая) до 12.1.8 (исключая)
cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*
Версия от 12.1.0 (включая) до 12.1.8 (исключая)
cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*
Версия от 12.2.0 (включая) до 12.2.3 (исключая)
cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*
Версия от 12.2.0 (включая) до 12.2.3 (исключая)

EPSS

Процентиль: 47%
0.00241
Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-918

Связанные уязвимости

ubuntu логотип

CVE-2019-15728

CVSS3: 7.5
ubuntu
почти 6 лет назад

An issue was discovered in GitLab Community and Enterprise Edition 10.1 through 12.2.1. Protections against SSRF attacks on the Kubernetes integration are insufficient, which could have allowed an attacker to request any local network resource accessible from the GitLab server.

debian логотип

CVE-2019-15728

CVSS3: 7.5
debian
почти 6 лет назад

An issue was discovered in GitLab Community and Enterprise Edition 10. ...

github логотип

GHSA-9wrx-mw8f-hx7p

CVSS3: 7.5
github
около 3 лет назад

An issue was discovered in GitLab Community and Enterprise Edition 10.1 through 12.2.1. Protections against SSRF attacks on the Kubernetes integration are insufficient, which could have allowed an attacker to request any local network resource accessible from the GitLab server.

EPSS

Процентиль: 47%
0.00241
Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-918