6.4 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
34.6%
Improper validation of invited users’ email address in GitLab EE affecting all versions since 12.2 allowed projects to add members with email address domain that should be blocked by group settings
gitlab.com/gitlab-org/cves/-/blob/master/2021/CVE-2021-22251.json
gitlab.com/gitlab-org/gitlab/-/issues/14004
hackerone.com/reports/679567