Vulnerabilities > Gitlab
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-02-17 | CVE-2019-12825 | Insecure Storage of Sensitive Information vulnerability in Gitlab Unauthorized Access to the Container Registry of other groups was discovered in GitLab Enterprise 12.0.0-pre. | 4.3 |
| 2020-02-14 | CVE-2019-15594 | Unspecified vulnerability in Gitlab GitLab 11.8 and later contains a security vulnerability that allows a user to obtain details of restricted pipelines via the merge request endpoint. | 4.3 |
| 2020-02-14 | CVE-2019-15592 | Unspecified vulnerability in Gitlab GitLab 12.2.2 and below contains a security vulnerability that allows a guest user in a private project to see the merge request ID associated to an issue via the activity timeline. | 4.3 |
| 2020-02-05 | CVE-2020-6833 | Unspecified vulnerability in Gitlab An issue was discovered in GitLab EE 11.3 and later. | 7.5 |
| 2020-02-05 | CVE-2020-7978 | Unspecified vulnerability in Gitlab GitLab EE 12.6 and later through 12.7.2 allows Denial of Service. | 7.5 |
| 2020-02-05 | CVE-2020-7977 | Incorrect Default Permissions vulnerability in Gitlab GitLab EE 8.8 and later through 12.7.2 has Insecure Permissions. | 5.3 |
| 2020-02-05 | CVE-2020-7976 | Unspecified vulnerability in Gitlab GitLab EE 12.4 and later through 12.7.2 has Incorrect Access Control. | 5.3 |
| 2020-02-05 | CVE-2020-7974 | Unspecified vulnerability in Gitlab GitLab EE 10.1 through 12.7.2 allows Information Disclosure. | 5.3 |
| 2020-02-05 | CVE-2020-7973 | Cross-site Scripting vulnerability in Gitlab GitLab through 12.7.2 allows XSS. | 6.1 |
| 2020-02-05 | CVE-2020-7972 | Incorrect Default Permissions vulnerability in Gitlab GitLab EE 12.2 has Insecure Permissions (issue 2 of 2). | 7.5 |