Lucene search
K

22 matches found

CNNVD
CNNVD
added 2026/05/28 12:0 a.m.9 views

GitLab 安全漏洞

GitLab is an end-to-end software development platform provided by the American company GitLab. It includes built-in features such as version control, issue tracking, code review, and CI/CD Continuous Integration and Delivery. Vulnerabilities exist in versions of GitLab CE/EE before 18.10.7,...

4.3CVSS5.9AI score0.00193EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-26223

Malware in sbrugna...

5.5CVSS5.3AI score0.00951EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-26271

Malware in sbrugna...

5.3CVSS5.2AI score0.01134EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2021-39915

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Improper access control in the GraphQL API in GitLab CE/EE affecting all versions starting from 13.0 before 14.3.6, all versions starting from 14.4 before 14.4....

5.3CVSS5.8AI score0.01134EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2021-39866

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A business logic error in the project deletion process in GitLab 13.6 and later allows persistent access via project access tokens. CVE-2021-39866 Note that...

5.5CVSS5.6AI score0.00951EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 8:43 p.m.4 views

CVE-2021-39866

A business logic error in the project deletion process in GitLab 13.6 and later allows persistent access via project access tokens...

5.5CVSS6.1AI score0.00951EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:42 p.m.4 views

CVE-2021-39915

Improper access control in the GraphQL API in GitLab CE/EE affecting all versions starting from 13.0 before 14.3.6, all versions starting from 14.4 before 14.4.4, all versions starting from 14.5 before 14.5.2, allows an attacker to see the names of project access tokens on arbitrary projects...

5.3CVSS6.2AI score0.01134EPSS
Exploits0References1
OSV
OSV
added 2024/03/06 11:17 a.m.34 views

BIT-GITLAB-2021-39915

Improper access control in the GraphQL API in GitLab CE/EE affecting all versions starting from 13.0 before 14.3.6, all versions starting from 14.4 before 14.4.4, all versions starting from 14.5 before 14.5.2, allows an attacker to see the names of project access tokens on arbitrary projects...

5.3CVSS5.3AI score0.01134EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/01/03 12:0 a.m.17 views

GitLab 13.6 < 14.1.7 / 14.2 < 14.2.5 / 14.3 < 14.3.1 (CVE-2021-39866)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - A business logic error in the project deletion process in GitLab 13.6 and later allows persistent access via project access tokens. CVE-2021-39866 Note that Nessus has not tested for this issue but ha...

5.5CVSS5.7AI score0.00951EPSS
Exploits0References4
OSV
OSV
added 2021/12/13 4:15 p.m.19 views

CVE-2021-39915

Improper access control in the GraphQL API in GitLab CE/EE affecting all versions starting from 13.0 before 14.3.6, all versions starting from 14.4 before 14.4.4, all versions starting from 14.5 before 14.5.2, allows an attacker to see the names of project access tokens on arbitrary projects...

5.3CVSS6.4AI score0.01134EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2021/12/13 4:15 p.m.22 views

CVE-2021-39915

Improper access control in the GraphQL API in GitLab CE/EE affecting all versions starting from 13.0 before 14.3.6, all versions starting from 14.4 before 14.4.4, all versions starting from 14.5 before 14.5.2, allows an attacker to see the names of project access tokens on arbitrary projects...

5.3CVSS6.2AI score0.01134EPSS
Exploits0References1
OSV
OSV
added 2021/12/13 4:15 p.m.2 views

UBUNTU-CVE-2021-39915

Improper access control in the GraphQL API in GitLab CE/EE affecting all versions starting from 13.0 before 14.3.6, all versions starting from 14.4 before 14.4.4, all versions starting from 14.5 before 14.5.2, allows an attacker to see the names of project access tokens on arbitrary projects...

5.3CVSS6.2AI score0.01134EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2021/12/13 12:0 a.m.3 views

PT-2021-22761 · Gitlab · Gitlab Ce/Ee +1

Name of the Vulnerable Software and Affected Versions: GitLab CE/EE versions 13.0 through 14.3.6 GitLab CE/EE versions 14.4 through 14.4.4 GitLab CE/EE versions 14.5 through 14.5.2 Description: The issue is related to improper access control in the GraphQL API, allowing an attacker to see the nam...

5.3CVSS5.1AI score0.01134EPSS
Exploits0References11
NVD
NVD
added 2021/10/05 1:15 p.m.16 views

CVE-2021-39866

A business logic error in the project deletion process in GitLab 13.6 and later allows persistent access via project access tokens...

5.5CVSS0.00951EPSS
Exploits0References3
Prion
Prion
added 2021/10/05 1:15 p.m.14 views

Design/Logic Flaw

A business logic error in the project deletion process in GitLab 13.6 and later allows persistent access via project access tokens...

5.5CVSS5.5AI score0.00951EPSS
Exploits0References3Affected Software1
UbuntuCve
UbuntuCve
added 2021/10/05 1:15 p.m.21 views

CVE-2021-39866

A business logic error in the project deletion process in GitLab 13.6 and later allows persistent access via project access tokens...

5.5CVSS6.1AI score0.00951EPSS
Exploits0References4
OSV
OSV
added 2021/10/05 1:15 p.m.2 views

UBUNTU-CVE-2021-39866

A business logic error in the project deletion process in GitLab 13.6 and later allows persistent access via project access tokens...

5.4CVSS5.8AI score0.00951EPSS
Exploits0References5
Cvelist
Cvelist
added 2021/10/05 12:35 p.m.19 views

CVE-2021-39866

A business logic error in the project deletion process in GitLab 13.6 and later allows persistent access via project access tokens...

5.4CVSS5.9AI score0.00951EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2021/10/05 12:35 p.m.17 views

CVE-2021-39866

Removed by vendor...

5.5CVSS6AI score0.00951EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2021/10/05 12:0 a.m.2 views

PT-2021-22713 · Gitlab · Gitlab

Name of the Vulnerable Software and Affected Versions: GitLab versions 13.6 and later Description: A business logic error in the project deletion process allows persistent access via project access tokens. Recommendations: For GitLab versions 13.6 and later, update to a version that includes a fi...

5.5CVSS5.1AI score0.00951EPSS
Exploits0References12
Rows per page
Query Builder