GitLab Multiple Vulnerabilities
Release Date:
3 Feb 2021
4794
Views
RISK: Medium Risk
TYPE: Servers - Other Servers
Multiple vulnerabilities were identified in GitLab, a remote attacker could exploit some of these vulnerabilities to trigger information disclosure, cross-site scripting and security restriction bypass on the targeted system.
Impact
- Cross-Site Scripting
- Information Disclosure
- Security Restriction Bypass
System / Technologies affected
- Versions prior to 13.8.2, 13.7.6 and 13.6.6 for GitLab Community Edition (CE) and Enterprise Edition (EE)
Solutions
Before installation of the software, please visit the software vendor web-site for more details.
- The vendor has issued a fix:
https://about.gitlab.com/blog/2021/02/01/security-release-gitlab-13-8-2-released/
Vulnerability Identifier
Source
Related Link
Share with