exploitDog

CVE-2021-39876

Опубликовано: 28 мар. 2022

Источник: ubuntu

Приоритет: medium

CVSS2: 4

CVSS3: 4.3

Описание

In all versions of GitLab CE/EE since version 11.3, the endpoint for auto-completing Assignee discloses the members of private groups.

Релиз	Статус	Примечание
esm-apps/xenial	ignored	not maintainable
trusty	ignored	end of standard support
upstream	needs-triage
xenial	ignored	end of standard support

Показывать по

Ссылки на источники

4 Medium

CVSS2

4.3 Medium

CVSS3

Связанные уязвимости

CVE-2021-39876

CVSS3: 4.3

nvd

почти 4 года назад

In all versions of GitLab CE/EE since version 11.3, the endpoint for auto-completing Assignee discloses the members of private groups.

CVE-2021-39876

CVSS3: 4.3

debian

почти 4 года назад

In all versions of GitLab CE/EE since version 11.3, the endpoint for a ...

GHSA-2p9m-5cj9-r9pf

CVSS3: 4.3

github

почти 4 года назад

In all versions of GitLab CE/EE since version 11.3, the endpoint for auto-completing Assignee discloses the members of private groups.

4 Medium

CVSS2

4.3 Medium

CVSS3