5 matches found
Linux Distros Unpatched Vulnerability : CVE-2021-39903
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In all versions of GitLab CE/EE since version 13.0, a privileged user, through an API call, can change the visibility level of a group or a project to a...
GitLab 13.0 < 14.2.6 / 14.3 < 14.3.4 / 14.4 < 14.4.1 (CVE-2021-39903)
The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - In all versions of GitLab CE/EE since version 13.0, a privileged user, through an API call, can change the visibility level of a group or a project to a restricted option even after the instance...
CVE-2021-39903
creationtimestamp| type| source ---|---|--- 2021-11-05 01:25:13+00:00| seen| https://t.me/cibsecurity/31864...
UBUNTU-CVE-2021-39903
In all versions of GitLab CE/EE since version 13.0, a privileged user, through an API call, can change the visibility level of a group or a project to a restricted option even after the instance administrator sets that visibility option as restricted in settings...
CVE-2021-39903
CVE-2021-39903 affects GitLab CE/EE (all versions since 13.0). A privileged user can, via API calls, change the visibility of a group or project to a restricted option even after the administrator has restricted that visibility in settings. The root cause is an API-level ability to override confi...