6.2 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
39.0%
A confusion between tag and branch names in GitLab CE/EE affecting all versions since 13.7 allowed a Developer to access protected CI variables which should only be accessible to Maintainers
gitlab.com/gitlab-org/cves/-/blob/master/2021/CVE-2021-22252.json
gitlab.com/gitlab-org/gitlab/-/issues/330364
hackerone.com/reports/1186135