An issue was discovered in GitLab Community and Enterprise Edition before 11.5.8, 11.6.x before 11.6.6, and 11.7.x before 11.7.1. It allows Information Disclosure (issue 5 of 6). A project guest user can view the last commit status of the default branch.
2019-09-09T20:15:12.197
2024-11-21T04:47:10.190
Modified
CVSSv3.1: 4.3 (MEDIUM)
AV:N/AC:L/Au:S/C:P/I:N/A:N
8.0
2.9
Type | Vendor | Product | Version/Range | Vulnerable? |
---|---|---|---|---|
Application | gitlab | gitlab | < 11.5.8 | Yes |
Application | gitlab | gitlab | < 11.5.8 | Yes |
Application | gitlab | gitlab | < 11.6.6 | Yes |
Application | gitlab | gitlab | < 11.6.6 | Yes |
Application | gitlab | gitlab | < 11.7.1 | Yes |
Application | gitlab | gitlab | < 11.7.1 | Yes |