Lucene search
GoogleOSV:CVE-2019-13011HistoryMar 10, 2020 - 6:15 p.m.
CVE-2019-13011
2020-03-1018:15:11
Google
osv.dev
5
An issue was discovered in GitLab Enterprise Edition 8.11.0 through 12.0.2. By using brute-force a user with access to a project, but not it’s repository could create a list of merge requests template names. It has excessive algorithmic complexity.
| CPE | Name | Operator | Version |
|---|---|---|---|
| gitlab | eq | 2.6.2 | |
| gitlab | eq | 1.0.2 | |
| gitlab | eq | 8.12.0-rc2-ee | |
| gitlab | eq | 8.12.0-rc1 | |
| gitlab | eq | 6.7.1 | |
| gitlab | eq | 8.11.0-rc3-ee | |
| gitlab | eq | 8.12.0-rc6-ee | |
| gitlab | eq | 2.4.0 | |
| gitlab | eq | 4.0.0rc1 | |
| gitlab | eq | 4.0.0rc2 |
Related
nvd
nvd
CVE-2019-13011
2020-03-10 18:15:11
ubuntucve
ubuntucve
CVE-2019-13011
2020-03-10 00:00:00
cve
cve
CVE-2019-13011
2020-03-10 18:15:11
debiancve
debiancve
CVE-2019-13011
2020-03-10 18:15:11
prion
prion
Code injection
2020-03-10 18:15:00
cvelist
cvelist
CVE-2019-13011
2020-03-10 17:09:40
nessus
nessus
freebsd
freebsd
Gitlab -- Multiple Vulnerabilities
2019-07-03 00:00:00