Vulnerabilities > CVE-2021-39901 - Unspecified vulnerability in Gitlab

047910
CVSS 2.7 - LOW
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
HIGH
Confidentiality impact
LOW
Integrity impact
NONE
Availability impact
NONE
network
low complexity
gitlab
NVD
Published: 2021-11-05
Updated: 2021-11-08

Summary

In all versions of GitLab CE/EE since version 11.10, an admin of a group can see the SCIM token of that group by visiting a specific endpoint.

Vulnerable Configurations

Part Description Count
Application
Gitlab
580

References