GitLab Multiple Vulnerabilities
Last Update Date:
5 Oct 2020 09:47
Release Date:
5 Oct 2020
4801
Views
RISK: Medium Risk
TYPE: Servers - Other Servers
Multiple vulnerabilities were identified in GitLab, a remote attacker could exploit some of these vulnerabilities to trigger cross-site scripting, denial of service condition, remote code execution, security restriction bypass, disclose sensitive information and tampering on the targeted system.
Impact
- Cross-Site Scripting
- Denial of Service
- Remote Code Execution
- Security Restriction Bypass
- Information Disclosure
- Data Manipulation
System / Technologies affected
- GitLab 7.12 and later
Solutions
Before installation of the software, please visit the software vendor web-site for more details.
- The vendor has issued a fix:
https://about.gitlab.com/releases/2020/10/01/security-release-13-4-2-release/
Vulnerability Identifier
Source
Related Link
Share with