Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2021-39886

Опубликовано: 05 окт. 2021
Источник: nvd
CVSS3: 2.6
CVSS3: 4.3
CVSS2: 4
EPSS Низкий

Описание

Permissions rules were not applied while issues were moved between projects of the same group in GitLab versions starting with 10.6 and up to 14.1.7 allowing users to read confidential Epic references.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*
Версия от 10.6.0 (включая) до 14.1.7 (исключая)
cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*
Версия от 10.6.0 (включая) до 14.1.7 (исключая)
cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*
Версия от 14.2.0 (включая) до 14.2.5 (исключая)
cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*
Версия от 14.2.0 (включая) до 14.2.5 (исключая)
cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*
Версия от 14.3.0 (включая) до 14.3.1 (исключая)
cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*
Версия от 14.3.0 (включая) до 14.3.1 (исключая)

EPSS

Процентиль: 34%
0.00135
Низкий

2.6 Low

CVSS3

4.3 Medium

CVSS3

4 Medium

CVSS2

Дефекты

CWE-276

Связанные уязвимости

ubuntu логотип

CVE-2021-39886

CVSS3: 2.6
ubuntu
больше 4 лет назад

Permissions rules were not applied while issues were moved between projects of the same group in GitLab versions starting with 10.6 and up to 14.1.7 allowing users to read confidential Epic references.

debian логотип

CVE-2021-39886

CVSS3: 2.6
debian
больше 4 лет назад

Permissions rules were not applied while issues were moved between pro ...

github логотип

GHSA-cxfj-qcv7-fx7w

github
больше 3 лет назад

Permissions rules were not applied while issues were moved between projects of the same group in GitLab versions starting with 10.6 and up to 14.1.7 allowing users to read confidential Epic references.

EPSS

Процентиль: 34%
0.00135
Низкий

2.6 Low

CVSS3

4.3 Medium

CVSS3

4 Medium

CVSS2

Дефекты

CWE-276