3 matches found
CVE-2021-39892
In all versions of GitLab CE/EE since version 12.0, a lower privileged user can import users from projects that they don't have a maintainer role on and disclose email addresses of those users...
GitLab 12.0 < 14.1.7 / 14.2 < 14.2.5 / 14.3 < 14.3.1 (CVE-2021-39892)
The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - In all versions of GitLab CE/EE since version 12.0, a lower privileged user can import users from projects that they don't have a maintainer role on and disclose email addresses of those users...
CVE-2021-39892
CVE-2021-39892 (GitLab CE/EE) affects all GitLab CE/EE versions since 12.0. A lower-privileged user can import users from projects where they lack a maintainer role and disclose those users’ email addresses. The technical details consistently state the vulnerability is tied to user import permiss...