exploitDog

CVE-2021-39890

Опубликовано: 06 дек. 2021

Источник: ubuntu

Приоритет: medium

CVSS2: 7.5

CVSS3: 3.1

Описание

It was possible to bypass 2FA for LDAP users and access some specific pages with Basic Authentication in GitLab 14.1.1 and above.

Релиз	Статус	Примечание
bionic	DNE
devel	DNE
esm-apps/xenial	ignored	not maintainable
esm-infra/focal	DNE
focal	DNE
hirsute	DNE
impish	DNE
jammy	DNE
kinetic	DNE
lunar	DNE

Показывать по

Ссылки на источники

7.5 High

CVSS2

3.1 Low

CVSS3

Связанные уязвимости

CVE-2021-39890

CVSS3: 3.1

nvd

около 4 лет назад

It was possible to bypass 2FA for LDAP users and access some specific pages with Basic Authentication in GitLab 14.1.1 and above.

CVE-2021-39890

CVSS3: 3.1

debian

около 4 лет назад

It was possible to bypass 2FA for LDAP users and access some specific ...

GHSA-45jj-6gxc-rh25

github

около 4 лет назад

It was possible to bypass 2FA for LDAP users and access some specific pages with Basic Authentication in GitLab 14.1.1 and above.

7.5 High

CVSS2

3.1 Low

CVSS3