Vulnerabilities > Gitlab > Medium

DATE CVE VULNERABILITY TITLE RISK
2019-09-16 CVE-2019-15731 Server-Side Request Forgery (SSRF) vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition 12.0 through 12.2.1.
network
low complexity
gitlab CWE-918
5.3
5.3
2019-09-16 CVE-2019-15727 Information Exposure vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition 11.2 through 12.2.1.
network
low complexity
gitlab CWE-200
5.3
5.3
2019-09-16 CVE-2019-15726 Unspecified vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition through 12.2.1.
network
low complexity
gitlab
5.3
5.3
2019-09-16 CVE-2019-15724 Cross-site Scripting vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition 11.10 through 12.2.1.
network
low complexity
gitlab CWE-79
6.1
6.1
2019-09-16 CVE-2019-15723 Missing Authorization vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition 11.9.x and 11.10.x before 11.10.1.
network
low complexity
gitlab CWE-862
5.3
5.3
2019-09-16 CVE-2019-15721 Incorrect Permission Assignment for Critical Resource vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition 10.8 through 12.2.1.
network
low complexity
gitlab CWE-732
5.4
5.4
2019-09-09 CVE-2019-6791 Improper Preservation of Permissions vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition before 11.5.8, 11.6.x before 11.6.6, and 11.7.x before 11.7.1.
network
low complexity
gitlab CWE-281
6.5
6.5
2019-09-09 CVE-2019-6997 Improper Privilege Management vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition 10.x (starting in 10.7) and 11.x before 11.5.8, 11.6.x before 11.6.6, and 11.7.x before 11.7.1.
network
low complexity
gitlab CWE-269
4.3
4.3
2019-09-09 CVE-2019-6996 Improper Privilege Management vulnerability in Gitlab
An issue was discovered in GitLab Enterprise Edition 10.x (starting in 10.6) and 11.x before 11.5.8, 11.6.x before 11.6.6, and 11.7.x before 11.7.1.
network
low complexity
gitlab CWE-269
4.3
4.3
2019-09-09 CVE-2019-6995 Improper Preservation of Permissions vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition 8.x, 9.x, 10.x, and 11.x before 11.5.8, 11.6.x before 11.6.6, and 11.7.x before 11.7.1.
network
low complexity
gitlab CWE-281
6.5
6.5