Lucene search
GoogleOSV:CVE-2021-39895HistoryNov 05, 2021 - 12:15 a.m.
CVE-2021-39895
2021-11-0500:15:00
Google
osv.dev
4
In all versions of GitLab CE/EE since version 8.0, an attacker can set the pipeline schedules to be active in a project export so when an unsuspecting owner imports that project, pipelines are active by default on that project. Under specialized conditions, this may lead to information disclosure if the project is imported from an untrusted source.
Related
nessus
nessus
GitLab 8.0 < 14.1.7 / 14.2 < 14.2.5 / 14.3 < 14.3.1 (CVE-2021-39895)
2024-01-03 00:00:00
cve
cve
CVE-2021-39895
2021-11-05 00:15:10
prion
prion
Information disclosure
2021-11-05 00:15:00
veracode
veracode
Information Disclosure
2023-08-06 19:56:33
osv
osv
BIT-gitlab-2021-39895
2024-03-06 11:18:15
nvd
nvd
CVE-2021-39895
2021-11-05 00:15:10
cnvd
cnvd
GitLab Input Validation Error Vulnerability (CNVD-2021-91177)
2021-11-01 00:00:00
debiancve
debiancve
CVE-2021-39895
2021-11-05 00:15:10
ubuntucve
ubuntucve
CVE-2021-39895
2021-11-05 00:00:00
cvelist
cvelist
CVE-2021-39895
2021-11-04 23:11:51
freebsd
freebsd
Gitlab -- Multiple Vulnerabilities
2021-10-28 00:00:00