Vulnerabilities > CVE-2018-19359 - Unspecified vulnerability in Gitlab

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

SINGLE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

nessus

NVD

Published: 2019-04-25

Updated: 2019-10-03

Summary

GitLab Community and Enterprise Edition 8.9 and later and before 11.5.0-rc12, 11.4.6, and 11.3.10 has Incorrect Access Control.

Part	Description	Count
Application	Gitlab Gitlab Gitlab 11.3.0 Gitlab Gitlab 11.3.1 Gitlab Gitlab 11.3.2 Gitlab Gitlab 11.3.3 Gitlab Gitlab 11.3.4 Gitlab Gitlab 11.3.5 Gitlab Gitlab 11.3.6 Gitlab Gitlab 11.3.7 Gitlab Gitlab 11.3.8 Gitlab Gitlab 11.3.9 Gitlab Gitlab 11.4.0 Gitlab Gitlab 11.4.1 Gitlab Gitlab 11.4.2 Gitlab Gitlab 11.4.3 Gitlab Gitlab 11.4.4 Gitlab Gitlab 11.4.5 Gitlab Gitlab 11.4.7 Gitlab Gitlab 11.4.8 Gitlab Gitlab 11.4.9 Gitlab Gitlab 11.5.0	62

NASL family	FreeBSD Local Security Checks
NASL id	FREEBSD_PKG_D889D32CECD911E89416001B217B3468.NASL
description	Gitlab reports : Persistent XSS Autocompletion Unauthorized service template creation
last seen	2020-06-01
modified	2020-06-02
plugin id	119058
published	2018-11-21
reporter	This script is Copyright (C) 2018-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/119058
title	FreeBSD : Gitlab -- Multiple vulnerabilities (d889d32c-ecd9-11e8-9416-001b217b3468)