Vulnerabilities > Gitlab > Low

DATE CVE VULNERABILITY TITLE RISK
2020-06-19 CVE-2020-13261 Information Exposure vulnerability in Gitlab
Amazon EKS credentials disclosure in GitLab CE/EE 12.6 and later through 13.0.1 allows other administrators to view Amazon EKS credentials via HTML source code
network
low complexity
gitlab CWE-200
2.7
2019-11-26 CVE-2019-18458 Improper Preservation of Permissions vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition through 12.4.
network
low complexity
gitlab CWE-281
2.7
2019-09-09 CVE-2019-7176 Unspecified vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition 8.x (starting in 8.9), 9.x, 10.x, and 11.x before 11.5.9, 11.6.x before 11.6.7, and 11.7.x before 11.7.2.
network
high complexity
gitlab
3.7
2019-09-09 CVE-2019-5461 Improper Input Validation vulnerability in Gitlab
An input validation problem was discovered in the GitHub service integration which could result in an attacker being able to make arbitrary POST requests in a GitLab instance's internal network.
low complexity
gitlab CWE-20
3.5
2019-04-17 CVE-2019-9171 Missing Authorization vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition before 11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1.
network
high complexity
gitlab CWE-862
3.7
2019-04-17 CVE-2019-9179 Information Exposure vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition before 11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1.
network
high complexity
gitlab CWE-200
3.7
2019-04-17 CVE-2019-9219 Authorization Bypass Through User-Controlled Key vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition before 11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1.
network
high complexity
gitlab CWE-639
3.7