Vulnerabilities > Gitlab > Gitlab > 12.2.11
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-01-03 | CVE-2019-19086 | Incorrect Permission Assignment for Critical Resource vulnerability in Gitlab Gitlab Enterprise Edition (EE) before 12.5.1 has Insecure Permissions (issue 1 of 2). | 4.0 |
| 2019-12-18 | CVE-2019-15591 | Unspecified vulnerability in Gitlab An improper access control vulnerability exists in GitLab <12.3.3 that allows an attacker to obtain container and dependency scanning reports through the merge request widget even though public pipelines were disabled. | 4.0 |
| 2019-11-26 | CVE-2019-18456 | Incorrect Permission Assignment for Critical Resource vulnerability in Gitlab An issue was discovered in GitLab Community and Enterprise Edition 8.17 through 12.4 in the Search feature provided by Elasticsearch integration.. | 5.0 |
| 2019-11-26 | CVE-2019-18455 | Infinite Loop vulnerability in Gitlab An issue was discovered in GitLab Community and Enterprise Edition 11 through 12.4 when building Nested GraphQL queries. | 5.0 |
| 2019-11-26 | CVE-2019-18454 | Cross-site Scripting vulnerability in Gitlab An issue was discovered in GitLab Community and Enterprise Edition 10.5 through 12.4 in link validation for RDoc wiki pages feature. | 4.3 |
| 2019-11-26 | CVE-2019-18453 | Incorrect Permission Assignment for Critical Resource vulnerability in Gitlab An issue was discovered in GitLab Community and Enterprise Edition 11.6 through 12.4 in the add comments via email feature. | 4.0 |
| 2019-11-26 | CVE-2019-18452 | Incorrect Permission Assignment for Critical Resource vulnerability in Gitlab An issue was discovered in GitLab Community and Enterprise Edition 11.3 through 12.4 when moving an issue to a public project from a private one. | 5.0 |
| 2019-11-26 | CVE-2019-18451 | Open Redirect vulnerability in Gitlab An issue was discovered in GitLab Community and Enterprise Edition 10.7.4 through 12.4 in the InternalRedirect filtering feature. | 5.8 |
| 2019-11-26 | CVE-2019-18450 | Incorrect Permission Assignment for Critical Resource vulnerability in Gitlab An issue was discovered in GitLab Community and Enterprise Edition before 12.4 in the Project labels feature. | 4.0 |
| 2019-11-26 | CVE-2019-18449 | Incorrect Permission Assignment for Critical Resource vulnerability in Gitlab An issue was discovered in GitLab Community and Enterprise Edition before 12.4 in the autocomplete feature. | 4.0 |