Описание
Improper authorization in the vulnerability report feature in GitLab EE affecting all versions since 13.1 allowed a reporter to access vulnerability data
Ссылки
- Vendor Advisory
- Broken Link
- Third Party Advisory
- Vendor Advisory
- Broken Link
- Third Party Advisory
Уязвимые конфигурации
Одно из
EPSS
3.1 Low
CVSS3
6.5 Medium
CVSS3
4 Medium
CVSS2
Дефекты
Связанные уязвимости
Improper authorization in the vulnerability report feature in GitLab EE affecting all versions since 13.1 allowed a reporter to access vulnerability data
Improper authorization in the vulnerability report feature in GitLab E ...
Improper authorization in the vulnerability report feature in GitLab EE affecting all versions since 13.1 allowed a reporter to access vulnerability data
Уязвимость функционала vulnerability report программной платформы на базе git для совместной работы над кодом GitLab, позволяющая нарушителю получить доступ к конфиденциальным данным
EPSS
3.1 Low
CVSS3
6.5 Medium
CVSS3
4 Medium
CVSS2