Lucene search
GoogleOSV:CVE-2019-15591HistoryDec 18, 2019 - 9:15 p.m.
CVE-2019-15591
2019-12-1821:15:12
Google
osv.dev
4
An improper access control vulnerability exists in GitLab <12.3.3 that allows an attacker to obtain container and dependency scanning reports through the merge request widget even though public pipelines were disabled.
| CPE | Name | Operator | Version |
|---|---|---|---|
| gitlab | eq | 2.6.2 | |
| gitlab | eq | 1.0.2 | |
| gitlab | eq | 12.3.0-rc42-ee | |
| gitlab | eq | 8.12.0-rc2-ee | |
| gitlab | eq | 8.12.0-rc1 | |
| gitlab | eq | 6.7.1 | |
| gitlab | eq | 8.11.0-rc3-ee | |
| gitlab | eq | 8.12.0-rc6-ee | |
| gitlab | eq | 2.4.0 | |
| gitlab | eq | 4.0.0rc1 |
References
Related
nvd
nvd
CVE-2019-15591
2019-12-18 21:15:12
debiancve
debiancve
CVE-2019-15591
2019-12-18 21:15:12
prion
prion
Improper access control
2019-12-18 21:15:00
ubuntucve
ubuntucve
CVE-2019-15591
2019-12-18 00:00:00
cvelist
cvelist
CVE-2019-15591
2019-12-18 20:51:27
cve
cve
CVE-2019-15591
2019-12-18 21:15:12
hackerone
hackerone