CVE-2019-19260

Опубликовано: 03 янв. 2020

Источник: nvd

CVSS3: 5.4

CVSS2: 5.5

EPSS Низкий

Описание

GitLab Community Edition (CE) and Enterprise Edition (EE) through 12.5 has Incorrect Access Control (issue 2 of 2).

Ссылки

https://about.gitlab.com/blog/2019/11/27/security-release-gitlab-12-5-1-released/
Release Notes
Vendor Advisory
https://about.gitlab.com/blog/categories/releases/
Release Notes
Vendor Advisory
https://about.gitlab.com/blog/2019/11/27/security-release-gitlab-12-5-1-released/
Release Notes
Vendor Advisory
https://about.gitlab.com/blog/categories/releases/
Release Notes
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*

Версия до 12.5.1 (исключая)

cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*

Версия до 12.5.1 (исключая)

EPSS

Процентиль: 21%

0.00067

Низкий

5.4 Medium

CVSS3

5.5 Medium

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

CVE-2019-19260

CVSS3: 5.4

ubuntu

больше 5 лет назад

GitLab Community Edition (CE) and Enterprise Edition (EE) through 12.5 has Incorrect Access Control (issue 2 of 2).

CVE-2019-19260

CVSS3: 5.4

debian

больше 5 лет назад

GitLab Community Edition (CE) and Enterprise Edition (EE) through 12.5 ...

GHSA-wmfr-vxm2-px6q

github

около 3 лет назад

GitLab Community Edition (CE) and Enterprise Edition (EE) through 12.5 has Incorrect Access Control (issue 2 of 2).

EPSS

Процентиль: 21%

0.00067

Низкий

5.4 Medium

CVSS3

5.5 Medium

CVSS2

Дефекты

NVD-CWE-noinfo