2 matches found
CVE-2019-5487
An improper access control vulnerability exists in Gitlab EE...
CVE-2019-5487
The CVE-2019-5487 entry concerns an improper access control in GitLab Enterprise Edition (GitLab EE) prior to v12.3.3, v12.2.7, and v12.1.13. The vulnerability arises in the group search feature when used with Elasticsearch, allowing leakage of private data (private code, merge requests, commits)...