CVE-2021-39930

Опубликовано: 13 дек. 2021

Источник: ubuntu

Приоритет: low

CVSS2: 4

CVSS3: 4.3

Описание

Missing authorization in GitLab EE versions between 12.4 and 14.3.6, between 14.4.0 and 14.4.4, and between 14.5.0 and 14.5.2 allowed an attacker to access a user's custom project and group templates

Релиз	Статус	Примечание
bionic	DNE
devel	DNE
esm-apps/xenial	ignored	not maintainable
esm-infra/focal	DNE
focal	DNE
hirsute	DNE
impish	DNE
jammy	DNE
kinetic	DNE
lunar	DNE

Показывать по

Ссылки на источники

https://www.cve.org/CVERecord?id=CVE-2021-39930

4 Medium

CVSS2

4.3 Medium

CVSS3

Связанные уязвимости

CVE-2021-39930

CVSS3: 4.3

nvd

около 4 лет назад

Missing authorization in GitLab EE versions between 12.4 and 14.3.6, between 14.4.0 and 14.4.4, and between 14.5.0 and 14.5.2 allowed an attacker to access a user's custom project and group templates

CVE-2021-39930

CVSS3: 4.3

debian

около 4 лет назад

Missing authorization in GitLab EE versions between 12.4 and 14.3.6, b ...

GHSA-gfwx-7f38-2397

github

около 4 лет назад

Missing authorization in GitLab EE versions between 12.4 and 14.3.6, between 14.4.0 and 14.4.4, and between 14.5.0 and 14.5.2 allowed an attacker to access a user's custom project and group templates

4 Medium

CVSS2

4.3 Medium

CVSS3

CVE-2021-39930

Описание

Пакет gitlab

Ссылки на источники

Связанные уязвимости