Опубликовано: 14 фев. 2020
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 4
CVSS3: 4.3
Описание
GitLab 11.8 and later contains a security vulnerability that allows a user to obtain details of restricted pipelines via the merge request endpoint.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | DNE | |
| devel | DNE | |
| eoan | DNE | |
| esm-apps/xenial | not-affected | code not present |
| esm-infra-legacy/trusty | DNE | |
| precise/esm | DNE | |
| trusty | DNE | |
| trusty/esm | DNE | |
| upstream | not-affected | debian: Only affects Gitlab EE |
| xenial | not-affected | code not present |
Показывать по
10
EPSS
Процентиль: 56%
0.00339
Низкий
4 Medium
CVSS2
4.3 Medium
CVSS3
Связанные уязвимости
CVSS3: 4.3
nvd
больше 5 лет назад
GitLab 11.8 and later contains a security vulnerability that allows a user to obtain details of restricted pipelines via the merge request endpoint.
CVSS3: 4.3
debian
больше 5 лет назад
GitLab 11.8 and later contains a security vulnerability that allows a ...
CVSS3: 4.3
github
больше 3 лет назад
GitLab 11.8 and later contains a security vulnerability that allows a user to obtain details of restricted pipelines via the merge request endpoint.
EPSS
Процентиль: 56%
0.00339
Низкий
4 Medium
CVSS2
4.3 Medium
CVSS3