Gitlab — веб-платформа для управления проектами и репозиториями программного кода, работа которой основана на популярной системе контроля версий Git.

Релизный цикл, информация об уязвимостях

Продукт: Gitlab

Вендор: gitlab

График релизов

Недавние уязвимости Gitlab

Количество 5 336

CVE-2020-10082

почти 6 лет назад

GitLab 12.2 through 12.8.1 allows Denial of Service. A denial of service vulnerability impacting the designs for public issues was discovered.

CVSS3: 5.3

EPSS: Низкий

CVE-2020-10082

почти 6 лет назад

GitLab 12.2 through 12.8.1 allows Denial of Service. A denial of servi ...

CVSS3: 5.3

EPSS: Низкий

CVE-2020-10081

почти 6 лет назад

GitLab before 12.8.2 has Incorrect Access Control. It was internally discovered that the LFS import process could potentially be used to incorrectly access LFS objects not owned by the user.

CVSS3: 6.5

EPSS: Низкий

CVE-2020-10081

почти 6 лет назад

GitLab before 12.8.2 has Incorrect Access Control. It was internally d ...

CVSS3: 6.5

EPSS: Низкий

CVE-2020-10080

почти 6 лет назад

GitLab 8.3 through 12.8.1 allows Information Disclosure. It was possible for certain non-members to access the Contribution Analytics page of a private group.

CVSS3: 5.3

EPSS: Низкий

CVE-2020-10080

почти 6 лет назад

GitLab 8.3 through 12.8.1 allows Information Disclosure. It was possib ...

CVSS3: 5.3

EPSS: Низкий

CVE-2020-10079

почти 6 лет назад

GitLab 7.10 through 12.8.1 has Incorrect Access Control. Under certain conditions where users should have been required to configure two-factor authentication, it was not being required.

CVSS3: 5.3

EPSS: Низкий

CVE-2020-10079

почти 6 лет назад

GitLab 7.10 through 12.8.1 has Incorrect Access Control. Under certain ...

CVSS3: 5.3

EPSS: Низкий

CVE-2020-10078

почти 6 лет назад

GitLab 12.1 through 12.8.1 allows XSS. The merge request submission form was determined to have a stored cross-site scripting vulnerability.

CVSS3: 6.1

EPSS: Низкий

CVE-2020-10078

почти 6 лет назад

GitLab 12.1 through 12.8.1 allows XSS. The merge request submission fo ...

CVSS3: 6.1

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано 1
CVE-2020-10082 GitLab 12.2 through 12.8.1 allows Denial of Service. A denial of service vulnerability impacting the designs for public issues was discovered.	CVSS3: 5.3	0% Низкий	почти 6 лет назад
CVE-2020-10082 GitLab 12.2 through 12.8.1 allows Denial of Service. A denial of servi ...	CVSS3: 5.3	0% Низкий	почти 6 лет назад
CVE-2020-10081 GitLab before 12.8.2 has Incorrect Access Control. It was internally discovered that the LFS import process could potentially be used to incorrectly access LFS objects not owned by the user.	CVSS3: 6.5	0% Низкий	почти 6 лет назад
CVE-2020-10081 GitLab before 12.8.2 has Incorrect Access Control. It was internally d ...	CVSS3: 6.5	0% Низкий	почти 6 лет назад
CVE-2020-10080 GitLab 8.3 through 12.8.1 allows Information Disclosure. It was possible for certain non-members to access the Contribution Analytics page of a private group.	CVSS3: 5.3	0% Низкий	почти 6 лет назад
CVE-2020-10080 GitLab 8.3 through 12.8.1 allows Information Disclosure. It was possib ...	CVSS3: 5.3	0% Низкий	почти 6 лет назад
CVE-2020-10079 GitLab 7.10 through 12.8.1 has Incorrect Access Control. Under certain conditions where users should have been required to configure two-factor authentication, it was not being required.	CVSS3: 5.3	0% Низкий	почти 6 лет назад
CVE-2020-10079 GitLab 7.10 through 12.8.1 has Incorrect Access Control. Under certain ...	CVSS3: 5.3	0% Низкий	почти 6 лет назад
CVE-2020-10078 GitLab 12.1 through 12.8.1 allows XSS. The merge request submission form was determined to have a stored cross-site scripting vulnerability.	CVSS3: 6.1	0% Низкий	почти 6 лет назад
CVE-2020-10078 GitLab 12.1 through 12.8.1 allows XSS. The merge request submission fo ...	CVSS3: 6.1	0% Низкий	почти 6 лет назад

Уязвимостей на страницу