Gitlab Security Vulnerabilities
GitLab 12.5 through 12.8.1 has Insecure Permissions. Depending on particular group settings, it was possible for invited groups to be given the incorrect permission...
8.1CVSS
7.8AI Score
0.001EPSS
GitLab 9.3 through 12.8.1 allows XSS. A cross-site scripting vulnerability was found when viewing particular file...
6.1CVSS
5.8AI Score
0.001EPSS
GitLab 12.2 through 12.8.1 allows Denial of Service. A denial of service vulnerability impacting the designs for public issues was...
5.3CVSS
5.1AI Score
0.001EPSS
GitLab 12.7 through 12.8.1 has Insecure Permissions. Under certain conditions involving groups, project authorization changes were not being...
9.1CVSS
9.1AI Score
0.002EPSS
GitLab EE 11.6 through 12.8.1 allows Information Disclosure. Sending a specially crafted request to the vulnerability_feedback endpoint could result in the exposure of a private project...
5.3CVSS
5AI Score
0.001EPSS
GitLab 11.7 through 12.8.1 allows Information Disclosure. Under certain group conditions, group epic information was unintentionally being...
5.3CVSS
5AI Score
0.001EPSS
GitLab before 12.8.2 allows Information Disclosure. Badge images were not being proxied, causing mixed content warnings as well as leaking the IP address of the...
7.5CVSS
7.4AI Score
0.002EPSS
GitLab 8.11 through 12.8.1 allows a Denial of Service when using several features to recursively request...
7.5CVSS
7.3AI Score
0.001EPSS
GitLab 8.3 through 12.8.1 allows Information Disclosure. It was possible for certain non-members to access the Contribution Analytics page of a private...
5.3CVSS
5AI Score
0.001EPSS
GitLab 7.10 through 12.8.1 has Incorrect Access Control. Under certain conditions where users should have been required to configure two-factor authentication, it was not being...
5.3CVSS
5.2AI Score
0.001EPSS
GitLab before 12.8.2 has Incorrect Access Control. It was internally discovered that the LFS import process could potentially be used to incorrectly access LFS objects not owned by the...
6.5CVSS
6.3AI Score
0.001EPSS
GitLab 12.1 through 12.8.1 allows XSS. The merge request submission form was determined to have a stored cross-site scripting...
6.1CVSS
5.8AI Score
0.001EPSS
GitLab 12.8.x before 12.8.6, when sign-up is enabled, allows remote attackers to bypass email domain restrictions within the two-day grace period for an unconfirmed email...
5.3CVSS
5.1AI Score
0.001EPSS
An issue was discovered in GitLab Enterprise Edition 8.3 through 12.0.2. The color codes decoder was vulnerable to a resource depletion attack if specific formats were used. It allows Uncontrolled Resource...
5.9CVSS
5.6AI Score
0.001EPSS
An issue was discovered in GitLab Community and Enterprise Edition 9.2 through 12.0.2. Uploaded files associated with unsaved personal snippets were accessible to unauthorized users due to improper permission settings. It has Incorrect Access...
6.5CVSS
6.2AI Score
0.001EPSS
An issue was discovered in GitLab Enterprise Edition 10.6 through 12.0.2. The GitHub project integration was vulnerable to an SSRF vulnerability which allowed an attacker to make requests to local network resources. It has Incorrect Access...
7.5CVSS
7.1AI Score
0.001EPSS
An issue was discovered in GitLab Community and Enterprise Edition 11.11 through 12.0.2. When an admin enabled one of the service templates, it was triggering an action that leads to resource depletion. It allows Uncontrolled Resource...
4.9CVSS
5AI Score
0.001EPSS
An issue was discovered in GitLab Enterprise Edition 8.11.0 through 12.0.2. By using brute-force a user with access to a project, but not it's repository could create a list of merge requests template names. It has excessive algorithmic...
4.3CVSS
4.5AI Score
0.001EPSS
An issue was discovered in GitLab Community and Enterprise Edition 9.0 and through 12.0.2. Users with access to issues, but not the repository were able to view the number of related merge requests on an issue. It has Incorrect Access...
4.3CVSS
4.6AI Score
0.001EPSS
An issue was discovered in GitLab Community and Enterprise Edition 11.9 and later through 12.0.2. GitLab Snippets were vulnerable to an authorization issue that allowed unauthorized users to add comments to a private snippet. It allows authentication...
4.3CVSS
4.6AI Score
0.001EPSS
An issue was discovered in GitLab Community and Enterprise Edition before 12.0.3. One of the parsers used by Gilab CI was vulnerable to a resource exhaustion attack. It allows Uncontrolled Resource...
7.5CVSS
7.1AI Score
0.001EPSS
An issue was discovered in GitLab Community and Enterprise Edition 8.3 through 11.11. It allows Information Exposure through an Error...
7.5CVSS
7.3AI Score
0.002EPSS
An issue was discovered in GitLab Community and Enterprise Edition 11.10 through 12.0.2. When specific encoded characters were added to comments, the comments section would become inaccessible. It has Incorrect Access Control (issue 1 of...
5.3CVSS
5.3AI Score
0.001EPSS
An issue was discovered in GitLab Community and Enterprise Edition 8.4 through 11.11. A malicious user could execute JavaScript code on notes by importing a specially crafted project file. It allows...
5.4CVSS
5.6AI Score
0.001EPSS
An issue was discovered in GitLab Community and Enterprise Edition 8.9 through 11.11. Wiki Pages contained a lack of input validation which resulted in a persistent XSS...
6.1CVSS
5.9AI Score
0.001EPSS
An issue was discovered in GitLab Community and Enterprise Edition 11.10 through 12.0.2. Unauthorized users were able to read pipeline information of the last merge request. It has Incorrect Access...
4.3CVSS
4.5AI Score
0.001EPSS
An issue was discovered in GitLab Enterprise Edition and Community Edition 1.10 through 12.0.2. The GitLab graphql service was vulnerable to multiple authorization issues that disclosed restricted user, group, and repository metadata to unauthorized users. It has Incorrect Access...
4.3CVSS
4.6AI Score
0.001EPSS
An issue was discovered in GitLab Community and Enterprise Edition 8.4 through 11.11. The protected branches feature contained a access control issue which resulted in a bypass of the protected branches restriction rules. It has Incorrect Access...
7.5CVSS
7.3AI Score
0.001EPSS
An issue was discovered in GitLab Enterprise Edition 11.7 through 11.11. The epic details page contained a lack of input validation and output encoding issue which resulted in a persistent XSS vulnerability on child...
6.1CVSS
5.9AI Score
0.001EPSS
An issue was discovered in GitLab Community and Enterprise Edition 10.2 through 11.11. Multiple features contained Server-Side Request Forgery (SSRF) vulnerabilities caused by an insufficient validation to prevent DNS rebinding...
9.8CVSS
9.5AI Score
0.002EPSS
An issue was discovered in GitLab Community and Enterprise Edition 11.9 through 11.11. Unprivileged users were able to access labels, status and merge request counts of confidential issues via the milestone details page. It has Improper Access...
6.5CVSS
6.4AI Score
0.001EPSS
An issue was discovered in GitLab Community and Enterprise Edition 8.13 through 11.11. Non-member users who subscribed to issue notifications could access the title of confidential issues through the unsubscription page. It allows Information...
4.3CVSS
4.5AI Score
0.001EPSS
An issue was discovered in GitLab Community and Enterprise Edition 10.6 through 11.11. Users could guess the URL slug of private projects through the contrast of the destination URLs of issues linked in comments. It allows Information...
4.3CVSS
4.6AI Score
0.001EPSS
An issue was discovered in GitLab Community and Enterprise Edition 8.13 through 11.11. Restricted users could access the metadata of private milestones through the Search API. It has Improper Access...
4.3CVSS
4.6AI Score
0.001EPSS
An issue was discovered in GitLab Community and Enterprise Edition 11.7 through 11.11. It has Improper Input Validation. Restricted visibility settings allow creating internal projects in private groups, leading to multiple permission...
5.3CVSS
5.3AI Score
0.001EPSS
An issue was discovered in GitLab Community and Enterprise Edition 6.8 through 11.11. Users could bypass the mandatory external authentication provider sign-in restrictions by sending a specially crafted request. It has Improper...
9.8CVSS
9.3AI Score
0.002EPSS
An issue was discovered in GitLab Community and Enterprise Edition 11.11. A specially crafted payload would allow an authenticated malicious user to execute commands remotely through the repository download feature. It allows Command...
8.8CVSS
8.6AI Score
0.002EPSS
9.8CVSS
9.3AI Score
0.007EPSS
In GitLab Enterprise Edition (EE) 12.5.0 through 12.7.5, sharing a group with a group could grant project access to unauthorized...
7.5CVSS
7.2AI Score
0.002EPSS
Unauthorized Access to the Container Registry of other groups was discovered in GitLab Enterprise 12.0.0-pre. In other words, authenticated remote attackers can read Docker registries of other groups. When a legitimate user changes the path of a group, Docker registries are not adapted, leaving...
4.3CVSS
4.2AI Score
0.001EPSS
GitLab 12.2.2 and below contains a security vulnerability that allows a guest user in a private project to see the merge request ID associated to an issue via the activity...
4.3CVSS
4.4AI Score
0.001EPSS
GitLab 11.8 and later contains a security vulnerability that allows a user to obtain details of restricted pipelines via the merge request...
4.3CVSS
4.4AI Score
0.001EPSS
An issue was discovered in GitLab EE 11.3 and later. A GitLab Workhorse bypass could lead to package and file disclosure via request...
7.5CVSS
7.2AI Score
0.002EPSS
5.3CVSS
5.4AI Score
0.001EPSS
7.5CVSS
7.4AI Score
0.001EPSS
5.3CVSS
5.4AI Score
0.001EPSS
5.3CVSS
5.4AI Score
0.001EPSS
6.1CVSS
6.2AI Score
0.001EPSS
7.5CVSS
7.4AI Score
0.001EPSS
6.1CVSS
6.2AI Score
0.001EPSS