3 matches found
CVE-2022-0390
Improper access control in Gitlab CE/EE versions 12.7 to 14.5.4, 14.6 to 14.6.4, and 14.7 to 14.7.1 allowed for project non-members to retrieve issue details when it was linked to an item from the vulnerability dashboard...
GitLab 12.7 < 14.5.4 / 14.6 < 14.6.4 / 14.7 < 14.7.1 (CVE-2022-0390)
The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - Improper access control in Gitlab CE/EE versions 12.7 to 14.5.4, 14.6 to 14.6.4, and 14.7 to 14.7.1 allowed for project non-members to retrieve issue details when it was linked to an item from the...
CVE-2022-0390
CVE-2022-0390 affects GitLab CE/EE, versions 12.7–14.7.1. The root cause is improper access control, enabling project non-members to retrieve issue details when they are linked to an item from the vulnerability dashboard. The vulnerability is documented across multiple sources, confirming affecte...