Gitlab

GitLab

1271 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2019-5462

Exploit
  • EPSS 0.45%
  • Veröffentlicht 28.01.2020 03:15:10
  • Zuletzt bearbeitet 21.11.2024 04:44:58

A privilege escalation issue was discovered in GitLab CE/EE 9.0 and later when trigger tokens are not rotated once ownership of them has changed.

9.8

CVE-2019-5464

Exploit
  • EPSS 0.43%
  • Veröffentlicht 28.01.2020 03:15:10
  • Zuletzt bearbeitet 21.11.2024 04:44:59

A flawed DNS rebinding protection issue was discovered in GitLab CE/EE 10.2 and later in the `url_blocker.rb` which could result in SSRF where the library is utilized.

4.3

CVE-2019-5465

Exploit
  • EPSS 0.48%
  • Veröffentlicht 28.01.2020 03:15:10
  • Zuletzt bearbeitet 21.11.2024 04:44:59

An information disclosure issue was discovered in GitLab CE/EE 8.14 and later, by using the move issue feature which could result in disclosure of the newly created issue ID.

4.3

CVE-2019-20142

  • EPSS 0.11%
  • Veröffentlicht 13.01.2020 21:15:11
  • Zuletzt bearbeitet 21.11.2024 04:38:05

An issue was discovered in GitLab Community Edition (CE) and Enterprise Edition (EE) 12.3 through 12.6.1. It allows Denial of Service.

5.3

CVE-2019-20143

  • EPSS 0.08%
  • Veröffentlicht 13.01.2020 21:15:11
  • Zuletzt bearbeitet 21.11.2024 04:38:05

An issue was discovered in GitLab Community Edition (CE) and Enterprise Edition (EE) 12.6. It has Incorrect Access Control.

4.3

CVE-2019-20144

  • EPSS 0.07%
  • Veröffentlicht 13.01.2020 21:15:11
  • Zuletzt bearbeitet 21.11.2024 04:38:05

An issue was discovered in GitLab Community Edition (CE) and Enterprise Edition (EE) 10.8 through 12.6.1. It has Incorrect Access Control.

5.3

CVE-2020-6832

  • EPSS 0.08%
  • Veröffentlicht 13.01.2020 20:15:14
  • Zuletzt bearbeitet 21.11.2024 05:36:15

An issue was discovered in GitLab Enterprise Edition (EE) 8.9.0 through 12.6.1. Using the project import feature, it was possible for someone to obtain issues from private projects.

4.3

CVE-2019-20145

  • EPSS 0.07%
  • Veröffentlicht 13.01.2020 20:15:13
  • Zuletzt bearbeitet 21.11.2024 04:38:05

An issue was discovered in GitLab Community Edition (CE) and Enterprise Edition (EE) 11.4 through 12.6.1. It has Incorrect Access Control.

5.3

CVE-2019-20146

  • EPSS 0.11%
  • Veröffentlicht 13.01.2020 20:15:13
  • Zuletzt bearbeitet 21.11.2024 04:38:05

An issue was discovered in GitLab Community Edition (CE) and Enterprise Edition (EE) 11.0 through 12.6. It allows Uncontrolled Resource Consumption.

5.3

CVE-2019-20147

  • EPSS 0.08%
  • Veröffentlicht 13.01.2020 20:15:13
  • Zuletzt bearbeitet 21.11.2024 04:38:06

An issue was discovered in GitLab Community Edition (CE) and Enterprise Edition (EE) 9.1 through 12.6.1. It has Incorrect Access Control.