Vulnerabilities > Gitlab > Gitlab > 12.0.8

DATE CVE VULNERABILITY TITLE RISK
2019-11-26 CVE-2019-18446 Incorrect Permission Assignment for Critical Resource vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition 8.15 through 12.4.
network
low complexity
gitlab CWE-732
5.5
5.5
2019-11-26 CVE-2019-18459 Incorrect Permission Assignment for Critical Resource vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition 11.3 to 12.3 in the protected environments feature.
network
low complexity
gitlab CWE-732
5.0
5.0
2019-11-26 CVE-2019-18458 Improper Preservation of Permissions vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition through 12.4.
network
low complexity
gitlab CWE-281
4.0
4.0
2019-11-26 CVE-2019-18457 Improper Preservation of Permissions vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition 11.8 through 12.4 when handling Security tokens..
network
low complexity
gitlab CWE-281
6.5
6.5
2019-11-26 CVE-2019-18463 Incorrect Permission Assignment for Critical Resource vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition through 12.4.
network
low complexity
gitlab CWE-732
4.0
4.0
2019-11-26 CVE-2019-18462 Improper Privilege Management vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition 11.3 through 12.4.
network
low complexity
gitlab CWE-269
4.0
4.0
2019-11-26 CVE-2019-18461 Information Exposure vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition 11.3 through 12.3 when a sub group epic is added to a public group.
network
low complexity
gitlab CWE-200
4.0
4.0
2019-11-26 CVE-2019-18460 Information Exposure vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition 8.15 through 12.4 in the Comments Search feature provided by the Elasticsearch integration.
network
low complexity
gitlab CWE-200
5.0
5.0
2019-09-16 CVE-2019-16170 Unspecified vulnerability in Gitlab
An issue was discovered in GitLab Enterprise Edition 11.x and 12.x before 12.0.9, 12.1.x before 12.1.9, and 12.2.x before 12.2.5.
network
low complexity
gitlab
5.5
5.5
2019-08-29 CVE-2019-14943 Use of Hard-coded Credentials vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition 12.0 through 12.1.4.
network
low complexity
gitlab CWE-798
7.5
7.5