3 matches found
CVE-2019-5464
A flawed DNS rebinding protection issue was discovered in GitLab CE/EE 10.2 and later in the urlblocker.rb which could result in SSRF where the library is utilized...
CVE-2019-5464
CVE-2019-5464 affects GitLab CE/EE 10.2 and later due to a flawed DNS rebinding protection in lib/gitlab/url_blocker.rb, which can result in SSRF when the library is used. The issue can allow an attacker to trigger requests to the local/internal network (e.g., via webhooks), with high impact (net...
CVE-2019-5464
A flawed DNS rebinding protection issue was discovered in GitLab CE/EE 10.2 and later in the urlblocker.rb which could result in SSRF where the library is utilized...