Описание
GitLab 12.5 through 12.8.1 has Insecure Permissions. Depending on particular group settings, it was possible for invited groups to be given the incorrect permission level.
Ссылки
- Release NotesVendor Advisory
- Release NotesVendor Advisory
- Release NotesVendor Advisory
- Release NotesVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 12.5.0 (включая) до 12.8.1 (включая)Версия от 12.5.0 (включая) до 12.8.1 (включая)
Одно из
cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*
cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*
EPSS
Процентиль: 15%
0.00049
Низкий
8.1 High
CVSS3
5.5 Medium
CVSS2
Дефекты
CWE-269
Связанные уязвимости
CVSS3: 8.1
ubuntu
больше 5 лет назад
GitLab 12.5 through 12.8.1 has Insecure Permissions. Depending on particular group settings, it was possible for invited groups to be given the incorrect permission level.
CVSS3: 8.1
debian
больше 5 лет назад
GitLab 12.5 through 12.8.1 has Insecure Permissions. Depending on part ...
github
около 3 лет назад
GitLab 12.5 through 12.8.1 has Insecure Permissions. Depending on particular group settings, it was possible for invited groups to be given the incorrect permission level.
EPSS
Процентиль: 15%
0.00049
Низкий
8.1 High
CVSS3
5.5 Medium
CVSS2
Дефекты
CWE-269