6.4 Medium
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
53.5%
An issue was discovered in GitLab 10.7.0 and later through 12.9.2. A Workhorse bypass could lead to job artifact uploads and file disclosure (Exposure of Sensitive Information) via request smuggling.
about.gitlab.com/blog/categories/releases/
about.gitlab.com/releases/2020/04/14/critical-security-release-gitlab-12-dot-9-dot-3-released/