3 matches found
CVE-2019-13011
An issue was discovered in GitLab Enterprise Edition 8.11.0 through 12.0.2. By using brute-force a user with access to a project, but not it's repository could create a list of merge requests template names. It has excessive algorithmic complexity...
CVE-2019-13011
An issue was discovered in GitLab Enterprise Edition 8.11.0 through 12.0.2. By using brute-force a user with access to a project, but not it's repository could create a list of merge requests template names. It has excessive algorithmic complexity...
CVE-2019-13011
CVE-2019-13011 affects GitLab Enterprise Edition 8.11.0 through 12.0.2. An attacker with access to a project (but not its repository) could brute-force enumerate a list of merge request template names, due to excessive algorithmic complexity in the relevant function. The vulnerability has a netwo...