Описание
An issue was discovered in GitLab Community and Enterprise Edition 11.3 through 12.3 when a sub group epic is added to a public group. It has Incorrect Access Control.
Ссылки
- Vendor Advisory
- Release NotesVendor Advisory
- Vendor Advisory
- Release NotesVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 11.3.0 (включая) до 12.3.0 (включая)Версия от 11.3.0 (включая) до 12.3.0 (включая)
Одно из
cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*
cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*
EPSS
Процентиль: 30%
0.00106
Низкий
4.3 Medium
CVSS3
4 Medium
CVSS2
Дефекты
CWE-200
Связанные уязвимости
CVSS3: 4.3
ubuntu
больше 5 лет назад
An issue was discovered in GitLab Community and Enterprise Edition 11.3 through 12.3 when a sub group epic is added to a public group. It has Incorrect Access Control.
CVSS3: 4.3
debian
больше 5 лет назад
An issue was discovered in GitLab Community and Enterprise Edition 11. ...
github
около 3 лет назад
An issue was discovered in GitLab Community and Enterprise Edition 11.3 through 12.3 when a sub group epic is added to a public group. It has Incorrect Access Control.
EPSS
Процентиль: 30%
0.00106
Низкий
4.3 Medium
CVSS3
4 Medium
CVSS2
Дефекты
CWE-200