Vulnerabilities > Gitlab > Gitlab > 12.2.11

DATE CVE VULNERABILITY TITLE RISK
2019-11-26 CVE-2019-18448 Information Exposure vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition before 12.4.
network
low complexity
gitlab CWE-200
4.0
4.0
2019-11-26 CVE-2019-18447 Incorrect Permission Assignment for Critical Resource vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition before 12.4.
network
low complexity
gitlab CWE-732
4.0
4.0
2019-11-26 CVE-2019-18446 Incorrect Permission Assignment for Critical Resource vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition 8.15 through 12.4.
network
low complexity
gitlab CWE-732
5.5
5.5
2019-11-26 CVE-2019-18459 Incorrect Permission Assignment for Critical Resource vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition 11.3 to 12.3 in the protected environments feature.
network
low complexity
gitlab CWE-732
5.0
5.0
2019-11-26 CVE-2019-18458 Improper Preservation of Permissions vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition through 12.4.
network
low complexity
gitlab CWE-281
4.0
4.0
2019-11-26 CVE-2019-18457 Improper Preservation of Permissions vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition 11.8 through 12.4 when handling Security tokens..
network
low complexity
gitlab CWE-281
6.5
6.5
2019-11-26 CVE-2019-18463 Incorrect Permission Assignment for Critical Resource vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition through 12.4.
network
low complexity
gitlab CWE-732
4.0
4.0
2019-11-26 CVE-2019-18462 Improper Privilege Management vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition 11.3 through 12.4.
network
low complexity
gitlab CWE-269
4.0
4.0
2019-11-26 CVE-2019-18461 Information Exposure vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition 11.3 through 12.3 when a sub group epic is added to a public group.
network
low complexity
gitlab CWE-200
4.0
4.0
2019-11-26 CVE-2019-18460 Information Exposure vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition 8.15 through 12.4 in the Comments Search feature provided by the Elasticsearch integration.
network
low complexity
gitlab CWE-200
5.0
5.0