Design/Logic Flaw

2020-02-0516:15:00

PRIOn knowledge base

www.prio-n.com

5.5 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

36.2%

GitLab EE 8.8 and later through 12.7.2 has Insecure Permissions.

CPENameOperatorVersion
gitlabge12.6.0
gitlablt12.6.6
gitlabge8.8.0
gitlablt12.5.9
gitlabge12.7.0
gitlable12.7.2

Name	Operator	Version
gitlab	ge	12.6.0
gitlab	lt	12.6.6
gitlab	ge	8.8.0
gitlab	lt	12.5.9
gitlab	ge	12.7.0
gitlab	le	12.7.2

References

about.gitlab.com/blog/categories/releases/

about.gitlab.com/releases/2020/01/30/security-release-gitlab-12-7-4-released/