Опубликовано: 28 мар. 2022
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 4
CVSS3: 4.3
Описание
In all versions of GitLab CE/EE since version 11.3, the endpoint for auto-completing Assignee discloses the members of private groups.
| Релиз | Статус | Примечание |
|---|---|---|
| esm-apps/xenial | ignored | not maintainable |
| trusty | ignored | end of standard support |
| upstream | needs-triage | |
| xenial | ignored | end of standard support |
Показывать по
10
EPSS
Процентиль: 47%
0.00236
Низкий
4 Medium
CVSS2
4.3 Medium
CVSS3
Связанные уязвимости
CVSS3: 4.3
nvd
около 4 лет назад
In all versions of GitLab CE/EE since version 11.3, the endpoint for auto-completing Assignee discloses the members of private groups.
CVSS3: 4.3
debian
около 4 лет назад
In all versions of GitLab CE/EE since version 11.3, the endpoint for a ...
CVSS3: 4.3
github
около 4 лет назад
In all versions of GitLab CE/EE since version 11.3, the endpoint for auto-completing Assignee discloses the members of private groups.
EPSS
Процентиль: 47%
0.00236
Низкий
4 Medium
CVSS2
4.3 Medium
CVSS3