Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2018-17453


An issue was discovered in GitLab Community and Enterprise Edition before 11.1.7, 11.2.x before 11.2.4, and 11.3.x before 11.3.1. Attackers may have been able to obtain sensitive access-token data from Sentry logs via the GRPC::Unknown exception.


Published

2023-04-15T23:15:13.557

Last Modified

2025-02-06T21:15:11.420

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 5.3 (MEDIUM)

Weaknesses
  • Type: Primary
    NVD-CWE-noinfo

Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application gitlab gitlab < 11.1.7 Yes
Application gitlab gitlab < 11.1.7 Yes
Application gitlab gitlab < 11.2.4 Yes
Application gitlab gitlab < 11.2.4 Yes
Application gitlab gitlab 11.3.0 Yes
Application gitlab gitlab 11.3.0 Yes

References