6.2 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
28.5%
An improper access control vulnerability exists in GitLab <12.3.3 that allows an attacker to obtain container and dependency scanning reports through the merge request widget even though public pipelines were disabled.
hackerone.com/reports/676976