3 matches found
GitLab 11.6 < 13.9.7 / 13.10.0 < 13.10.4 / 13.11.0 < 13.11.2 (CVE-2021-22206)
The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An issue has been discovered in GitLab affecting all versions starting from 11.6. Pull mirror credentials are exposed that allows other maintainers to be able to view the credentials in plain-text,...
CVE-2021-22206
CVE-2021-22206 (GitLab) affects GitLab CE/EE versions starting from 11.6 where pull mirror credentials could be exposed and viewed in plain text by other maintainers. The issue’s impact includes potential access to sensitive credentials and related abuse. Public advisories indicate fixes in GitLa...
FreeBSD : Gitlab -- Vulnerabilities (518a119c-a864-11eb-8ddb-001b217b3468)
Gitlab reports : Read API scoped tokens can execute mutations Pull mirror credentials were exposed Denial of Service when querying repository branches API Non-owners can set systemnotetimestamp when creating / updating issues DeployToken will impersonate a User with the same ID when using...