Описание
An issue has been discovered in GitLab CE/EE affecting all versions from 13.8 and above allowing an authenticated user to delete incident metric images of public projects.
Ссылки
- Vendor Advisory
- Broken Link
- Permissions RequiredThird Party Advisory
- Vendor Advisory
- Broken Link
- Permissions RequiredThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 13.8.0 (включая) до 13.8.7 (исключая)Версия от 13.8.0 (включая) до 13.8.7 (исключая)Версия от 13.9.0 (включая) до 13.9.5 (исключая)Версия от 13.9.0 (включая) до 13.9.5 (исключая)Версия от 13.10.0 (включая) до 13.10.1 (исключая)Версия от 13.10.0 (включая) до 13.10.1 (исключая)
Одно из
cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*
cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*
cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*
cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*
cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*
cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*
EPSS
Процентиль: 53%
0.003
Низкий
4.3 Medium
CVSS3
4 Medium
CVSS2
Дефекты
NVD-CWE-noinfo
Связанные уязвимости
CVSS3: 4.3
ubuntu
почти 5 лет назад
An issue has been discovered in GitLab CE/EE affecting all versions from 13.8 and above allowing an authenticated user to delete incident metric images of public projects.
CVSS3: 4.3
debian
почти 5 лет назад
An issue has been discovered in GitLab CE/EE affecting all versions fr ...
CVSS3: 4.3
github
больше 3 лет назад
An issue has been discovered in GitLab CE/EE affecting all versions from 13.8 and above allowing an authenticated user to delete incident metric images of public projects.
EPSS
Процентиль: 53%
0.003
Низкий
4.3 Medium
CVSS3
4 Medium
CVSS2
Дефекты
NVD-CWE-noinfo