GitLab Multiple Vulnerabilities
Release Date:
2 Jul 2021
5069
Views
RISK: Medium Risk
TYPE: Servers - Other Servers
Multiple vulnerabilities were identified in GitLab, a remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, spoofing, sensitive information disclosure, cross-site scripting and security restriction bypass on the targeted system.
Impact
- Spoofing
- Denial of Service
- Security Restriction Bypass
- Information Disclosure
- Cross-Site Scripting
System / Technologies affected
- GitLab Community Edition (CE) versions prior to 14.0.2, 13.12.6, and 13.11.6
GitLab Enterprise Edition (EE) versions prior to 14.0.2, 13.12.6, and 13.11.6
Solutions
Before installation of the software, please visit the software vendor web-site for more details.
- The vendor has issued a fix
https://about.gitlab.com/releases/2021/07/01/security-release-gitlab-14-0-2-released/
Vulnerability Identifier
Source
Related Link
Related Tags
Share with