Skip to main content

GitLab Sensitive Information Disclosure Vulnerability

Last Update Date: 19 Aug 2020 10:26 Release Date: 19 Aug 2020 5363 Views

RISK: Medium Risk

TYPE: Clients - Productivity Products

TYPE: Productivity Products

A vulnerability was identified in GitLab, a remote attacker could exploit this vulnerability to trigger sensitive information disclosure and security restriction bypass on the targeted system.


Impact

  • Security Restriction Bypass
  • Information Disclosure

System / Technologies affected

  • GitLab EE 10.7 and later

Solutions

Before installation of the software, please visit the software vendor web-site for more details.

  • The vendor has issued a fix:

 

https://about.gitlab.com/releases/2020/08/18/critical-security-release-gitlab-13-2-6-released/


Vulnerability Identifier

  • No CVE information is available

Source


Related Link