Page 92 of 552 results (0.003 seconds)

CVSS: 9.8EPSS: 0%CPEs: 6EXPL: 0

An issue was discovered in GitLab Community and Enterprise Edition before 11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1. It has Incorrect Access Control (issue 1 of 5). Fue encontrado un problema en GitLab Community and Enterprise Edition versión anterior de 11.6.10, versión 11.7.x anterior de 11.7.6 y versión 11.8.x anterior de 11.8.1. Tiene control de acceso incorrecto (problema 1 de 5). • https://about.gitlab.com/blog/categories/releases •

CVSS: 4.3EPSS: 0%CPEs: 6EXPL: 0

An issue was discovered in GitLab Community and Enterprise Edition 10.x and 11.x before 11.5.10, 11.6.x before 11.6.8, and 11.7.x before 11.7.3. It has Incorrect Access Control. The GitLab pipelines feature is vulnerable to authorization issues that allow unauthorized users to view job information. Se detecto un problema en GitLab Community and Enterprise Edition versiones 10.x y 11.x en versiones anteriores a la 11.5.10, versión 11.6.x en versiones anteriores a la 11.6.8, y versión 11.7.x en versiones anteriores a la 11.7.3. Presenta un control de acceso incorrecto. • https://about.gitlab.com/2019/01/31/security-release-gitlab-11-dot-7-dot-3-released https://gitlab.com/gitlab-org/gitlab-ce/issues/54358 •

CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0

An information disclosure issue was discovered in GitLab Enterprise Edition before 11.5.8, 11.6.x before 11.6.6, and 11.7.x before 11.7.1. The GitHub token used in CI/CD for External Repos was being leaked to project maintainers in the UI. Se descubrió un problema de divulgación de información en GitLab Enterprise Edition antes de 11.5.8, 11.6.x antes de 11.6.6 y 11.7.x antes de 11.7.1. El token de GitHub utilizado en CI/CD para reposiciones externas se estaba filtrando a los mantenedores del proyecto en la interfaz de usuario. • https://about.gitlab.com/2019/01/31/security-release-gitlab-11-dot-7-dot-3-released https://about.gitlab.com/blog/categories/releases •

CVSS: 4.3EPSS: 0%CPEs: 6EXPL: 0

An Incorrect Access Control (issue 2 of 3) issue was discovered in GitLab Community and Enterprise Edition 8.14 and later but before 11.5.8, 11.6.x before 11.6.6, and 11.7.x before 11.7.1. Guest users were able to view the list of a group's merge requests. Se detectó un problema de control de acceso incorrecto (problema 2 de 3) en GitLab Community and Enterprise Edition 8.14 y versiones posteriores, pero antes de 11.5.8, 11.6.x antes de 11.6.6 y 11.7.x antes de 11.7.1. Los usuarios invitados pudieron ver la lista de solicitudes de combinación de un grupo. • https://about.gitlab.com/2019/01/31/security-release-gitlab-11-dot-7-dot-3-released https://gitlab.com/gitlab-org/gitlab-ce/issues/51328 • CWE-862: Missing Authorization •

CVSS: 6.5EPSS: 0%CPEs: 6EXPL: 0

An Incorrect Access Control issue was discovered in GitLab Community and Enterprise Edition before 11.5.8, 11.6.x before 11.6.6, and 11.7.x before 11.7.1. The GitLab API allowed project Maintainers and Owners to view the trigger tokens of other project users. Se descubrió un problema de control de acceso incorrecto en GitLab Community and Enterprise Edition antes de 11.5.8, 11.6.x antes de 11.6.6 y 11.7.x antes de 11.7.1. La API de GitLab permitió a los mantenedores y propietarios del proyecto ver los tokens de activación de otros usuarios del proyecto. • https://about.gitlab.com/2019/01/31/security-release-gitlab-11-dot-7-dot-3-released https://about.gitlab.com/blog/categories/releases •