Vulnerabilities > CVE-2020-10087 - Unspecified vulnerability in Gitlab

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
NONE
Availability impact
NONE
network
low complexity
gitlab
NVD
Published: 2020-03-13
Updated: 2022-07-12

Summary

GitLab before 12.8.2 allows Information Disclosure. Badge images were not being proxied, causing mixed content warnings as well as leaking the IP address of the user.

Vulnerable Configurations

Part Description Count
Application
Gitlab
1739

References