3 matches found
CVE-2022-3482
CVE-2022-3482 describes an improper access control in GitLab CE/EE that allowed an unauthorized user to see release names even when these releases were restricted to project members. Affected versions include all 11.3 up to but not including 15.3.5 (i.e., 11.3–15.3.4), all 15.4 up to but not incl...
CVE-2022-3482
An improper access control issue in GitLab CE/EE affecting all versions from 11.3 prior to 15.3.5, 15.4 prior to 15.4.4, and 15.5 prior to 15.5.2 allowed an unauthorized user to see release names even when releases we set to be restricted to project members only...
FreeBSD : Gitlab -- Multiple Vulnerabilities (3cde510a-7135-11ed-a28b-bff032704f00)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 3cde510a-7135-11ed-a28b-bff032704f00 advisory. - Gitlab reports: DAST API scanner exposes Authorization headers in vulnerabilities Group IP...