Описание
GitLab 10.4 through 12.8.1 allows Directory Traversal. A particular endpoint was vulnerable to a directory traversal vulnerability, leading to arbitrary file read.
Ссылки
- Release NotesVendor Advisory
- Release NotesVendor Advisory
- Release NotesVendor Advisory
- Release NotesVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 10.4.0 (включая) до 12.8.1 (включая)Версия от 10.4.0 (включая) до 12.8.1 (включая)
Одно из
cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*
cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*
EPSS
Процентиль: 14%
0.00046
Низкий
5.3 Medium
CVSS3
5 Medium
CVSS2
Дефекты
CWE-22
Связанные уязвимости
CVSS3: 5.3
ubuntu
почти 6 лет назад
GitLab 10.4 through 12.8.1 allows Directory Traversal. A particular endpoint was vulnerable to a directory traversal vulnerability, leading to arbitrary file read.
CVSS3: 5.3
debian
почти 6 лет назад
GitLab 10.4 through 12.8.1 allows Directory Traversal. A particular en ...
github
больше 3 лет назад
GitLab 10.4 through 12.8.1 allows Directory Traversal. A particular endpoint was vulnerable to a directory traversal vulnerability, leading to arbitrary file read.
EPSS
Процентиль: 14%
0.00046
Низкий
5.3 Medium
CVSS3
5 Medium
CVSS2
Дефекты
CWE-22