gitlab
1,423 tracked vulnerabilities.
CVE-2019-15582
MEDIUM
GitLab < 12.3.2, < 12.2.6, < 12.1.12 - Authorization Bypass via Protected Environment Group Addition
Jan 28, 2020
CVSS 5.3
EPSS 0.01
CVE-2019-15581
MEDIUM
GitLab < 12.3.2, < 12.2.6, < 12.1.12 - Insecure Direct Object Reference via Merge Request Approval Rules
Jan 28, 2020
CVSS 5.3
EPSS 0.01
CVE-2019-15579
MEDIUM
GitLab < 12.3.2, < 12.2.6, < 12.1.12 - Unauthorized Exposure of Confidential Issue Assignees via Milestones
Jan 28, 2020
CVSS 5.3
EPSS 0.01
CVE-2019-15578
MEDIUM
GitLab < 12.3.2, < 12.2.6, < 12.1.12 - Exposure of Private Project Path in Unsubscribe Email Link
Jan 28, 2020
CVSS 5.3
EPSS 0.01
CVE-2019-20144
MEDIUM
GitLab CE/EE <12.6.1 - Info Disclosure
Jan 13, 2020
CVSS 4.3
EPSS 0.01
CVE-2019-20143
MEDIUM
GitLab 12.6 - Missing Authentication for Critical Function
Jan 13, 2020
CVSS 5.3
EPSS 0.01
CVE-2019-20142
MEDIUM
GitLab 12.3.0-12.6.1 - Denial of Service
Jan 13, 2020
CVSS 4.3
EPSS 0.01
CVE-2019-20148
MEDIUM
GitLab CE/EE <12.6.1 - Info Disclosure
Jan 13, 2020
CVSS 5.3
EPSS 0.01
CVE-2019-20147
MEDIUM
GitLab CE/EE <12.6.1 - Info Disclosure
Jan 13, 2020
CVSS 5.3
EPSS 0.01
CVE-2019-20146
MEDIUM
GitLab 11.0-12.6 - Uncontrolled Resource Consumption
Jan 13, 2020
CVSS 5.3
EPSS 0.01
CVE-2019-20145
MEDIUM
GitLab CE/EE <12.6.1 - Info Disclosure
Jan 13, 2020
CVSS 4.3
EPSS 0.01
CVE-2019-19629
HIGH
GitLab EE <12.5.3-12.3.8 - Info Disclosure
Jan 05, 2020
CVSS 7.5
EPSS 0.01
CVE-2019-19628
CRITICAL
GitLab EE <12.5.3, <12.4.5, <12.3.8 - Privilege Escalation & RCE
Jan 05, 2020
CVSS 9.8
EPSS 0.04
CVE-2019-19314
HIGH
GitLab EE <12.5-12.3.6 - Info Disclosure
Jan 05, 2020
CVSS 7.5
EPSS 0.01
CVE-2019-19313
HIGH
GitLab EE <12.3-12.5, 12.4.3, 12.3.6 - DoS
Jan 05, 2020
CVSS 7.5
EPSS 0.01
CVE-2019-19312
MEDIUM
GitLab EE <12.5-12.3.6 - Info Disclosure
Jan 05, 2020
CVSS 5.8
EPSS 0.01
CVE-2019-19310
MEDIUM
GitLab 9.0.0-12.5.0 - Insufficiently Protected Credentials
Jan 03, 2020
CVSS 4.9
EPSS 0.01
CVE-2019-19309
MEDIUM
GitLab 8.90-12.5 - Incorrect Access Control
Jan 03, 2020
CVSS 4.3
EPSS 0.01
CVE-2019-19263
MEDIUM
GitLab 8.2.0-12.5.0 - Insecure Permissions
Jan 03, 2020
CVSS 4.3
EPSS 0.01
CVE-2019-19262
MEDIUM
GitLab EE 11.9.0-12.5.1 - Insecure Permission Assignment
Jan 03, 2020
CVSS 4.3
EPSS 0.01
CVE-2019-19261
HIGH
GitLab 6.7.0-12.5.0 - Server-Side Request Forgery
Jan 03, 2020
CVSS 8.8
EPSS 0.01
CVE-2019-19260
MEDIUM
GitLab CE/EE <12.5 - Info Disclosure
Jan 03, 2020
CVSS 5.4
EPSS 0.01
CVE-2019-19259
MEDIUM
GitLab 11.3.0-12.5.0 - Insecure Direct Object Reference
Jan 03, 2020
CVSS 4.3
EPSS 0.01
CVE-2019-19258
MEDIUM
GitLab 10.8.0-12.5.0 - Incorrect Access Control
Jan 03, 2020
CVSS 5.3
EPSS 0.01
CVE-2019-19257
MEDIUM
GitLab CE/EE <12.5 - Info Disclosure
Jan 03, 2020
CVSS 5.3
EPSS 0.01