3 matches found
GitLab 13.5 < 13.9.7 (CVE-2021-22208)
The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An issue has been discovered in GitLab affecting versions starting with 13.5 up to 13.9.7. Improper permission check could allow the change of timestamp for issue creation or update. CVE-2021-22208 No...
CVE-2021-22208
CVE-2021-22208 affects GitLab versions 13.5–13.9.7. The issue is an improper permission check that could allow changing the timestamp of issue creation or updates. Public sources concur on the affected range and the permission bypass behavior. Remediation: upgrade fixed releases in the GitLab lin...
FreeBSD : Gitlab -- Vulnerabilities (518a119c-a864-11eb-8ddb-001b217b3468)
Gitlab reports : Read API scoped tokens can execute mutations Pull mirror credentials were exposed Denial of Service when querying repository branches API Non-owners can set systemnotetimestamp when creating / updating issues DeployToken will impersonate a User with the same ID when using...