Lucene search

Ubuntu.comUB:CVE-2019-9223

HistoryApr 17, 2019 - 12:00 a.m.

CVE-2019-9223

2019-04-1700:00:00

ubuntu.com

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

EPSS

0.003

Percentile

71.4%

JSON

An issue was discovered in GitLab Community and Enterprise Edition before
11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1. It allows
Information Exposure.

Notes

Author	Note
msalvatore	Affects 8.15 and later

References

about.gitlab.com/2019/03/04/security-release-gitlab-11-dot-8-dot-1-released/

launchpad.net/bugs/cve/CVE-2019-9223

nvd.nist.gov/vuln/detail/CVE-2019-9223

security-tracker.debian.org/tracker/CVE-2019-9223

www.cve.org/CVERecord?id=CVE-2019-9223

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

EPSS

0.003

Percentile

71.4%

JSON

Related for UB:CVE-2019-9223