An issue was discovered in GitLab Community and Enterprise Edition before 11.1.7, 11.2.x before 11.2.4, and 11.3.x before 11.3.1. Attackers may have been able to obtain sensitive access-token data from Sentry logs via the GRPC::Unknown exception.
2023-04-15T23:15:13.557
2025-02-06T21:15:11.420
Modified
CVSSv3.1: 5.3 (MEDIUM)
Type | Vendor | Product | Version/Range | Vulnerable? |
---|---|---|---|---|
Application | gitlab | gitlab | < 11.1.7 | Yes |
Application | gitlab | gitlab | < 11.1.7 | Yes |
Application | gitlab | gitlab | < 11.2.4 | Yes |
Application | gitlab | gitlab | < 11.2.4 | Yes |
Application | gitlab | gitlab | 11.3.0 | Yes |
Application | gitlab | gitlab | 11.3.0 | Yes |