Описание
GitLab EE, version 11.5 before 11.5.1, is vulnerable to an insecure object reference issue that permits a user with Reporter privileges to view the Jaeger Tracing Operations page.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | DNE | |
| cosmic | DNE | |
| devel | DNE | |
| esm-apps/xenial | not-affected | |
| esm-infra-legacy/trusty | DNE | |
| precise/esm | DNE | |
| trusty | DNE | |
| trusty/esm | DNE | |
| upstream | not-affected | debian: Specific to Enterprise edition |
| xenial | not-affected |
Показывать по
10
EPSS
Процентиль: 27%
0.00092
Низкий
4 Medium
CVSS2
6.5 Medium
CVSS3
Связанные уязвимости
CVSS3: 6.5
nvd
больше 6 лет назад
GitLab EE, version 11.5 before 11.5.1, is vulnerable to an insecure object reference issue that permits a user with Reporter privileges to view the Jaeger Tracing Operations page.
CVSS3: 6.5
debian
больше 6 лет назад
GitLab EE, version 11.5 before 11.5.1, is vulnerable to an insecure ob ...
CVSS3: 6.5
github
больше 3 лет назад
GitLab EE, version 11.5 before 11.5.1, is vulnerable to an insecure object reference issue that permits a user with Reporter privileges to view the Jaeger Tracing Operations page.
EPSS
Процентиль: 27%
0.00092
Низкий
4 Medium
CVSS2
6.5 Medium
CVSS3