Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Insufficient Granularity of Access Control in GitLab
Vulnerability Description
An improper access control in Gitlab EE affecting all versions from 12.0 prior to 18.0.6, 18.1 prior to 18.1.4, and 18.2 prior to 18.2.2 that under certain conditions could have allowed users to view assigned issues from restricted groups by bypassing IP restrictions.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N
Vulnerability Type
CWE-1220
Vulnerability Title
GitLab Enterprise Edition 安全漏洞
Vulnerability Description
GitLab Enterprise Edition(EE)是美国GitLab公司的一套内容管理系统。 GitLab Enterprise Edition 12.0至18.0.6之前版本、18.1至18.1.4之前版本和18.2至18.2.2之前版本存在安全漏洞,该漏洞源于访问控制不当,可能导致查看受限组问题。
CVSS Information
N/A
Vulnerability Type
N/A