First published: Wed May 29 2019(Updated: )
An issue was discovered in GitLab Community and Enterprise Edition 10.x and 11.x before 11.5.10, 11.6.x before 11.6.8, and 11.7.x before 11.7.3. It has Incorrect Access Control. The GitLab pipelines feature is vulnerable to authorization issues that allow unauthorized users to view job information.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
GitLab GitLab | >=10.0.0<11.5.10 | |
GitLab GitLab | >=10.0.0<11.5.10 | |
GitLab GitLab | >=11.6.0<11.6.8 | |
GitLab GitLab | >=11.6.0<11.6.8 | |
GitLab GitLab | >=11.7.0<11.7.3 | |
GitLab GitLab | >=11.7.0<11.7.3 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.