Gitlab — веб-платформа для управления проектами и репозиториями программного кода, работа которой основана на популярной системе контроля версий Git.

Релизный цикл, информация об уязвимостях

Продукт: Gitlab

Вендор: gitlab

График релизов

Недавние уязвимости Gitlab

Количество 5 237

CVE-2018-14603

больше 7 лет назад

An issue was discovered in GitLab Community and Enterprise Edition before 10.8.7, 11.0.x before 11.0.5, and 11.1.x before 11.1.2. CSRF can occur in the Test feature of the System Hooks component.

CVSS3: 8.8

EPSS: Низкий

CVE-2018-14603

больше 7 лет назад

An issue was discovered in GitLab Community and Enterprise Edition bef ...

CVSS3: 8.8

EPSS: Низкий

CVE-2018-14602

больше 7 лет назад

An issue was discovered in GitLab Community and Enterprise Edition before 10.8.7, 11.0.x before 11.0.5, and 11.1.x before 11.1.2. Information Disclosure can occur because the Prometheus metrics feature discloses private project pathnames.

CVSS3: 7.5

EPSS: Низкий

CVE-2018-14602

больше 7 лет назад

An issue was discovered in GitLab Community and Enterprise Edition bef ...

CVSS3: 7.5

EPSS: Низкий

CVE-2018-14601

больше 7 лет назад

An issue was discovered in GitLab Community and Enterprise Edition 11.1.x before 11.1.2. A Denial of Service can occur because Markdown rendering times are slow.

CVSS3: 7.5

EPSS: Низкий

CVE-2018-14601

больше 7 лет назад

An issue was discovered in GitLab Community and Enterprise Edition 11. ...

CVSS3: 7.5

EPSS: Низкий

CVE-2018-14602

больше 7 лет назад

CVSS3: 7.5

EPSS: Низкий

CVE-2018-14603

больше 7 лет назад

An issue was discovered in GitLab Community and Enterprise Edition before 10.8.7, 11.0.x before 11.0.5, and 11.1.x before 11.1.2. CSRF can occur in the Test feature of the System Hooks component.

CVSS3: 8.8

EPSS: Низкий

CVE-2018-14601

больше 7 лет назад

An issue was discovered in GitLab Community and Enterprise Edition 11.1.x before 11.1.2. A Denial of Service can occur because Markdown rendering times are slow.

CVSS3: 7.5

EPSS: Низкий

CVE-2018-14606

больше 7 лет назад

An issue was discovered in GitLab Community and Enterprise Edition before 10.8.7, 11.0.x before 11.0.5, and 11.1.x before 11.1.2. XSS can occur via a Milestone name during a promotion.

CVSS3: 5.4

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано 1
CVE-2018-14603 An issue was discovered in GitLab Community and Enterprise Edition before 10.8.7, 11.0.x before 11.0.5, and 11.1.x before 11.1.2. CSRF can occur in the Test feature of the System Hooks component.	CVSS3: 8.8	0% Низкий	больше 7 лет назад
CVE-2018-14603 An issue was discovered in GitLab Community and Enterprise Edition bef ...	CVSS3: 8.8	0% Низкий	больше 7 лет назад
CVE-2018-14602 An issue was discovered in GitLab Community and Enterprise Edition before 10.8.7, 11.0.x before 11.0.5, and 11.1.x before 11.1.2. Information Disclosure can occur because the Prometheus metrics feature discloses private project pathnames.	CVSS3: 7.5	0% Низкий	больше 7 лет назад
CVE-2018-14602 An issue was discovered in GitLab Community and Enterprise Edition bef ...	CVSS3: 7.5	0% Низкий	больше 7 лет назад
CVE-2018-14601 An issue was discovered in GitLab Community and Enterprise Edition 11.1.x before 11.1.2. A Denial of Service can occur because Markdown rendering times are slow.	CVSS3: 7.5	0% Низкий	больше 7 лет назад
CVE-2018-14601 An issue was discovered in GitLab Community and Enterprise Edition 11. ...	CVSS3: 7.5	0% Низкий	больше 7 лет назад
CVE-2018-14602 An issue was discovered in GitLab Community and Enterprise Edition before 10.8.7, 11.0.x before 11.0.5, and 11.1.x before 11.1.2. Information Disclosure can occur because the Prometheus metrics feature discloses private project pathnames.	CVSS3: 7.5	0% Низкий	больше 7 лет назад
CVE-2018-14603 An issue was discovered in GitLab Community and Enterprise Edition before 10.8.7, 11.0.x before 11.0.5, and 11.1.x before 11.1.2. CSRF can occur in the Test feature of the System Hooks component.	CVSS3: 8.8	0% Низкий	больше 7 лет назад
CVE-2018-14601 An issue was discovered in GitLab Community and Enterprise Edition 11.1.x before 11.1.2. A Denial of Service can occur because Markdown rendering times are slow.	CVSS3: 7.5	0% Низкий	больше 7 лет назад
CVE-2018-14606 An issue was discovered in GitLab Community and Enterprise Edition before 10.8.7, 11.0.x before 11.0.5, and 11.1.x before 11.1.2. XSS can occur via a Milestone name during a promotion.	CVSS3: 5.4	0% Низкий	больше 7 лет назад

Уязвимостей на страницу