Page 93 of 475 results (0.007 seconds)

CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0

In GitLab Enterprise Edition (EE) 12.5.0 through 12.7.5, sharing a group with a group could grant project access to unauthorized users. En GitLab Enterprise Edition (EE) versiones 12.5.0 hasta 12.7.5, compartir un grupo con un grupo podría otorgar acceso al proyecto a usuarios no autorizados. • https://about.gitlab.com/releases/2020/02/13/critical-security-release-gitlab-12-dot-7-dot-6-released https://about.gitlab.com/releases/categories/releases •

CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0

An issue was discovered in GitLab EE 11.3 and later. A GitLab Workhorse bypass could lead to package and file disclosure via request smuggling. Se detectó un problema en GitLab EE versiones 11.3 y posteriores. Una omisión de GitLab Workhorse podría conllevar a una divulgación de paquetes y archivos mediante el tráfico no autorizado de peticiones. • https://about.gitlab.com/blog/categories/releases https://about.gitlab.com/releases/2020/01/30/security-release-gitlab-12-7-4-released •

CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0

GitLab EE 11.11 and later through 12.7.2 allows Directory Traversal. GitLab EE versiones 11.11 y posteriores hasta 12.7.2, permite un Salto de Directorio. • https://about.gitlab.com/blog/categories/releases https://about.gitlab.com/releases/2020/01/30/security-release-gitlab-12-7-4-released • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •

CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0

GitLab EE 8.0 through 12.7.2 has Insecure Permissions (issue 1 of 2). GitLab EE versiones 8.0 hasta 12.7.2, presenta Permisos No Seguros (problema 1 de 2). • https://about.gitlab.com/blog/categories/releases https://about.gitlab.com/releases/2020/01/30/security-release-gitlab-12-7-4-released • CWE-276: Incorrect Default Permissions •

CVSS: 7.5EPSS: 0%CPEs: 6EXPL: 0

GitLab EE 8.0 through 12.7.2 has Incorrect Access Control. GitLab EE versiones 8.0 hasta 12.7.2, presenta un Control de Acceso Incorrecto. • https://about.gitlab.com/blog/categories/releases https://about.gitlab.com/releases/2020/01/30/security-release-gitlab-12-7-4-released • CWE-862: Missing Authorization •