Vulnerabilities > Gitlab
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-11-26 | CVE-2019-18459 | Incorrect Permission Assignment for Critical Resource vulnerability in Gitlab An issue was discovered in GitLab Community and Enterprise Edition 11.3 to 12.3 in the protected environments feature. | 5.3 |
| 2019-11-26 | CVE-2019-18458 | Improper Preservation of Permissions vulnerability in Gitlab An issue was discovered in GitLab Community and Enterprise Edition through 12.4. | 2.7 |
| 2019-11-26 | CVE-2019-18457 | Improper Preservation of Permissions vulnerability in Gitlab An issue was discovered in GitLab Community and Enterprise Edition 11.8 through 12.4 when handling Security tokens.. | 8.8 |
| 2019-11-26 | CVE-2019-18463 | Incorrect Permission Assignment for Critical Resource vulnerability in Gitlab An issue was discovered in GitLab Community and Enterprise Edition through 12.4. | 4.3 |
| 2019-11-26 | CVE-2019-18462 | Incorrect Permission Assignment for Critical Resource vulnerability in Gitlab An issue was discovered in GitLab Community and Enterprise Edition 11.3 through 12.4. | 4.3 |
| 2019-11-26 | CVE-2019-18461 | Information Exposure vulnerability in Gitlab An issue was discovered in GitLab Community and Enterprise Edition 11.3 through 12.3 when a sub group epic is added to a public group. | 4.3 |
| 2019-11-26 | CVE-2019-18460 | Information Exposure vulnerability in Gitlab An issue was discovered in GitLab Community and Enterprise Edition 8.15 through 12.4 in the Comments Search feature provided by the Elasticsearch integration. | 7.5 |
| 2019-11-22 | CVE-2019-15593 | Allocation of Resources Without Limits or Throttling vulnerability in Gitlab 12.2.3 GitLab 12.2.3 contains a security vulnerability that allows a user to affect the availability of the service through a Denial of Service attack in Issue Comments. | 6.5 |
| 2019-09-17 | CVE-2019-15729 | Incorrect Authorization vulnerability in Gitlab An issue was discovered in GitLab Community and Enterprise Edition 8.18 through 12.2.1. | 7.5 |
| 2019-09-16 | CVE-2019-15741 | Unspecified vulnerability in Gitlab Omnibus An issue was discovered in GitLab Omnibus 7.4 through 12.2.1. | 9.8 |