Vulnerabilities > Gitlab > High

DATE CVE VULNERABILITY TITLE RISK
2019-05-15 CVE-2019-10640 Command Injection vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition before 11.7.10, 11.8.x before 11.8.6, and 11.9.x before 11.9.4.
network
low complexity
gitlab CWE-77
7.5
7.5
2019-04-25 CVE-2018-19359 Unspecified vulnerability in Gitlab
GitLab Community and Enterprise Edition 8.9 and later and before 11.5.0-rc12, 11.4.6, and 11.3.10 has Incorrect Access Control.
network
low complexity
gitlab
8.8
8.8
2019-04-17 CVE-2019-9223 Information Exposure Through an Error Message vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition before 11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1.
network
low complexity
gitlab CWE-209
7.5
7.5
2019-04-17 CVE-2019-9222 Incorrect Permission Assignment for Critical Resource vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition before 11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1.
network
low complexity
gitlab CWE-732
8.1
8.1
2019-04-17 CVE-2019-9220 Resource Exhaustion vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition before 11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1.
network
low complexity
gitlab CWE-400
7.5
7.5
2019-04-04 CVE-2018-20229 Path Traversal vulnerability in Gitlab
GitLab Community and Enterprise Edition before 11.3.14, 11.4.x before 11.4.12, and 11.5.x before 11.5.5 allows Directory Traversal.
network
low complexity
gitlab CWE-22
7.5
7.5
2019-03-28 CVE-2018-20144 Path Traversal vulnerability in Gitlab
GitLab Community and Enterprise Edition 11.x before 11.3.13, 11.4.x before 11.4.11, and 11.5.x before 11.5.4 has Incorrect Access Control.
network
low complexity
gitlab CWE-22
7.5
7.5
2019-03-26 CVE-2018-19856 Path Traversal vulnerability in Gitlab
GitLab CE/EE before 11.3.12, 11.4.x before 11.4.10, and 11.5.x before 11.5.3 allows Directory Traversal in Templates API.
network
low complexity
gitlab CWE-22
7.5
7.5
2019-03-25 CVE-2019-6240 Path Traversal vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition before 11.4.
network
low complexity
gitlab CWE-22
7.5
7.5
2018-12-04 CVE-2018-18648 Information Exposure vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition before 11.2.7, 11.3.x before 11.3.8, and 11.4.x before 11.4.3.
network
low complexity
gitlab CWE-200
7.5
7.5