Lucene search
China National Vulnerability DatabaseCNVD-2021-91183HistoryNov 01, 2021 - 12:00 a.m.
GitLab Access Control Error Vulnerability (CNVD-2021-91183)
2021-11-0100:00:00
China National Vulnerability Database
www.cnvd.org.cn
6
0.001 Low
EPSS
Percentile
34.6%
GitLab is a self-hosted, Git (version control system) project repository application developed in Ruby on Rails by GitLab, Inc. The application can be used to access a project’s file content, commit history, bug list, etc. An access control error vulnerability exists in GitLab CE/EE, which could be exploited by an attacker to resolve discussions and apply recommendations after the project owner locks out merge requests.
| CPE | Name | Operator | Version |
|---|---|---|---|
| gitlab gitlab ce/ee | ge | 13.1 |
Related
osv
osv
CVE-2021-39904
2021-11-05 00:15:10
BIT-gitlab-2021-39904
2024-03-06 11:18:01
veracode
veracode
Improper Access Control
2023-08-06 20:06:09
cve
cve
CVE-2021-39904
2021-11-05 00:15:10
debiancve
debiancve
CVE-2021-39904
2021-11-05 00:15:10
prion
prion
Improper access control
2021-11-05 00:15:00
cvelist
cvelist
CVE-2021-39904
2021-11-04 23:13:11
nessus
nessus
GitLab 13.1 < 14.2.6 / 14.3 < 14.3.4 / 14.4 < 14.4.1 (CVE-2021-39904)
2022-04-20 00:00:00
ubuntucve
ubuntucve
CVE-2021-39904
2021-11-05 00:00:00
nvd
nvd
CVE-2021-39904
2021-11-05 00:15:10
freebsd
freebsd
Gitlab -- Multiple Vulnerabilities
2021-10-28 00:00:00