CVE-2019-19257

Опубликовано: 03 янв. 2020

Источник: nvd

CVSS3: 5.3

CVSS2: 5

EPSS Низкий

Описание

GitLab Community Edition (CE) and Enterprise Edition (EE) through 12.5 has Incorrect Access Control (issue 1 of 2).

Ссылки

https://about.gitlab.com/blog/2019/11/27/security-release-gitlab-12-5-1-released/
Release Notes
Vendor Advisory
https://about.gitlab.com/blog/categories/releases/
Release Notes
Vendor Advisory
https://about.gitlab.com/blog/2019/11/27/security-release-gitlab-12-5-1-released/
Release Notes
Vendor Advisory
https://about.gitlab.com/blog/categories/releases/
Release Notes
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*

Версия до 12.5.1 (исключая)

cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*

Версия до 12.5.1 (исключая)

EPSS

Процентиль: 23%

0.00075

Низкий

5.3 Medium

CVSS3

5 Medium

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

CVE-2019-19257

CVSS3: 5.3

ubuntu

больше 5 лет назад

GitLab Community Edition (CE) and Enterprise Edition (EE) through 12.5 has Incorrect Access Control (issue 1 of 2).

CVE-2019-19257

CVSS3: 5.3

debian

больше 5 лет назад

GitLab Community Edition (CE) and Enterprise Edition (EE) through 12.5 ...

GHSA-mf63-gqmm-mv3v

github

около 3 лет назад

GitLab Community Edition (CE) and Enterprise Edition (EE) through 12.5 has Incorrect Access Control (issue 1 of 2).

EPSS

Процентиль: 23%

0.00075

Низкий

5.3 Medium

CVSS3

5 Medium

CVSS2

Дефекты

NVD-CWE-noinfo