Vulnerabilities > Gitlab > Gitlab > 13.7.6
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-03-26 | CVE-2021-22180 | Forced Browsing vulnerability in Gitlab An issue has been discovered in GitLab affecting all versions starting from 13.4. | 4.0 |
| 2021-03-24 | CVE-2021-22192 | Unspecified vulnerability in Gitlab An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.2 allowing unauthorized authenticated users to execute arbitrary code on the server. | 6.5 |
| 2021-03-24 | CVE-2021-22186 | Incorrect Authorization vulnerability in Gitlab An authorization issue in GitLab CE/EE version 9.4 and up allowed a group maintainer to modify group CI/CD variables which should be restricted to group owners | 4.0 |
| 2021-03-24 | CVE-2021-22178 | Server-Side Request Forgery (SSRF) vulnerability in Gitlab An issue has been discovered in GitLab affecting all versions starting from 13.2. | 4.0 |
| 2021-03-24 | CVE-2021-22176 | Incorrect Authorization vulnerability in Gitlab An issue has been discovered in GitLab affecting all versions starting with 3.0.1. | 4.0 |
| 2021-03-02 | CVE-2021-22187 | Resource Exhaustion vulnerability in Gitlab An issue has been discovered in GitLab affecting all versions of Gitlab EE/CE before 13.6.7. | 4.0 |