GitLab is an open source end-to-end software development platform from GitLab, Inc. with built-in version control, issue tracking, code review, CI/CD (continuous integration and continuous delivery), etc. GitLab CE/EE versions 11.3 and later are vulnerable to an information disclosure vulnerability that stems from the fact that the endpoint that automates tasks exposes private group members and an attacker The vulnerability can be exploited to obtain a list of private group members.
CPE | Name | Operator | Version |
---|---|---|---|
gitlab gitlab ce/ee | ge | 11.3 |