First published: Wed Apr 17 2019(Updated: )
An issue was discovered in GitLab Community and Enterprise Edition before 11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1. It has Incorrect Access Control (issue 4 of 5).
Credit: cve@mitre.org cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
GitLab | <11.6.10 | |
GitLab | <11.6.10 | |
GitLab | >=11.7.0<11.7.6 | |
GitLab | >=11.7.0<11.7.6 | |
GitLab | >=11.8.0<11.8.1 | |
GitLab | >=11.8.0<11.8.1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2019-9224 is classified as having a moderate severity due to incorrect access control issues.
To fix CVE-2019-9224, upgrade GitLab Community or Enterprise Edition to version 11.6.10 or higher, 11.7.6 or higher, or 11.8.1 or higher.
CVE-2019-9224 affects GitLab Community and Enterprise Editions prior to versions 11.6.10, 11.7.6, and 11.8.1.
CVE-2019-9224 is an access control vulnerability that allows unauthorized access to certain functionality.
CVE-2019-9224 was reported on March 4, 2019, when the security release was made available.