GitLab is prone to an unauthorized-access vulnerability.
Attackers can exploit this issue to gain unauthorized access and perform malicious actions. This may aid in further attacks.
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: vuldb@securityfocus.com.
Solution:
Updates are available. Please see the references or vendor advisory for more information.
| Bugtraq ID: | 109118 |
| Class: | Access Validation Error |
| CVE: | CVE-2018-19569 |
| Remote: | Yes |
| Local: | No |
| Published: | Jul 10 2019 12:00AM |
| Updated: | Jul 10 2019 12:00AM |
| Credit: | James Ritchey |
| Vulnerable: | Gitlab GitLab Enterprise Edition 11.5 Gitlab GitLab Enterprise Edition 11.4 Gitlab GitLab Enterprise Edition 11.3 Gitlab GitLab Enterprise Edition 8.8 Gitlab GitLab Community Edition 11.5 Gitlab GitLab Community Edition 11.4 Gitlab GitLab Community Edition 11.3 Gitlab GitLab Community Edition 8.8 |
| Not Vulnerable: | Gitlab GitLab Enterprise Edition 11.5.1 Gitlab GitLab Enterprise Edition 11.4.8 Gitlab GitLab Enterprise Edition 11.3.11 Gitlab GitLab Community Edition 11.5.1 Gitlab GitLab Community Edition 11.4.8 Gitlab GitLab Community Edition 11.3.11 |
References:
from SecurityFocus Vulnerabilities https://ift.tt/2Ga3KuJ
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.