Improper access control

2022-10-1716:15:00

PRIOn knowledge base

www.prio-n.com

improper access control

gitlab ce/ee

unauthorized disclosure

pipeline status

4.2 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

32.4%

JSON

An improper access control issue in GitLab CE/EE affecting all versions starting before 15.1.6, all versions from 15.2 before 15.2.4, all versions from 15.3 before 15.3.2 allows disclosure of pipeline status to unauthorized users.

CPENameOperatorVersion
gitlabge15.3
gitlablt15.3.2
gitlabge15.2
gitlablt15.2.4
gitlabge15.2
gitlablt15.2.4
gitlabge15.3
gitlablt15.3.2
gitlablt15.1.6
gitlablt15.1.6