Vulnerabilities > Gitlab > Gitlab > 13.5.3
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-03-26 | CVE-2021-22172 | Information Exposure vulnerability in Gitlab Improper authorization in GitLab 12.8+ allows a guest user in a private project to view tag data that should be inaccessible on the releases page | 4.0 |
| 2021-03-24 | CVE-2021-22169 | Information Exposure Through an Error Message vulnerability in Gitlab An issue was identified in GitLab EE 13.4 or later which leaked internal IP address via error messages. | 4.0 |
| 2021-03-24 | CVE-2021-22193 | Information Exposure Through an Error Message vulnerability in Gitlab An issue has been discovered in GitLab affecting all versions starting with 7.1. | 3.5 |
| 2021-03-24 | CVE-2021-22192 | Unspecified vulnerability in Gitlab An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.2 allowing unauthorized authenticated users to execute arbitrary code on the server. | 6.5 |
| 2021-03-24 | CVE-2021-22186 | Incorrect Authorization vulnerability in Gitlab An authorization issue in GitLab CE/EE version 9.4 and up allowed a group maintainer to modify group CI/CD variables which should be restricted to group owners | 4.0 |
| 2021-03-24 | CVE-2021-22179 | Server-Side Request Forgery (SSRF) vulnerability in Gitlab A vulnerability was discovered in GitLab versions before 12.2. | 5.5 |
| 2021-03-24 | CVE-2021-22178 | Server-Side Request Forgery (SSRF) vulnerability in Gitlab An issue has been discovered in GitLab affecting all versions starting from 13.2. | 4.0 |
| 2021-03-24 | CVE-2021-22176 | Incorrect Authorization vulnerability in Gitlab An issue has been discovered in GitLab affecting all versions starting with 3.0.1. | 4.0 |
| 2021-03-04 | CVE-2021-22189 | Improper Certificate Validation vulnerability in Gitlab Starting with version 13.7 the Gitlab CE/EE editions were affected by a security issue related to the validation of the certificates for the Fortinet OTP that could result in authentication issues. | 6.5 |
| 2021-03-04 | CVE-2021-22183 | Cross-site Scripting vulnerability in Gitlab An issue has been discovered in GitLab affecting all versions starting with 11.8. | 3.5 |