3 matches found
Linux Distros Unpatched Vulnerability : CVE-2021-39889
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In all versions of GitLab EE since version 14.1, due to an insecure direct object reference vulnerability, an endpoint may reveal the protected branch name to a...
CVE-2021-39889
In all versions of GitLab EE since version 14.1, due to an insecure direct object reference vulnerability, an endpoint may reveal the protected branch name to a malicious user who makes a crafted API call with the ID of the protected branch...
CVE-2021-39889
CVE-2021-39889 affects GitLab EE versions from 14.1 onward. An insecure direct object reference in a protected-branch API endpoint may disclose the protected branch name to a malicious user who crafts an API call using the branch ID. Impact is information disclosure (confidentiality) with no inte...