GitLab Multiple Vulnerabilities
Release Date:
1 Apr 2021
5188
Views
RISK: Medium Risk
TYPE: Servers - Other Servers
Multiple vulnerabilities were identified in GitLab, a remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, information disclosure, cross-site scripting, security restriction bypass and data manipulation on the targeted system.
Impact
- Cross-Site Scripting
- Denial of Service
- Security Restriction Bypass
- Information Disclosure
- Data Manipulation
System / Technologies affected
- Versions prior to 13.10.1, 13.9.5, and 13.8.7 for GitLab Community Edition (CE) and Enterprise Edition (EE)
Solutions
Before installation of the software, please visit the software vendor web-site for more details.
- The vendor has issued a fix:
https://about.gitlab.com/releases/2021/03/31/security-release-gitlab-13-10-1-released/
Vulnerability Identifier
- No CVE information is available
Source
Related Link
Related Tags
Share with