You are viewing this page in an unauthorized frame window.
This is a potential security issue, you are being redirected to
https://nvd.nist.gov
An official website of the United States government
Official websites use .gov
A .gov website belongs to an official government organization in the United States.
Secure .gov websites use HTTPS
A lock () or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
OR
*cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:* versions up to (excluding) 10.8.7
*cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:* versions up to (excluding) 10.8.7
*cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:* versions from (including) 11.0.0 up to (excluding) 11.0.5
*cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:* versions from (including) 11.0.0 up to (excluding) 11.0.5
*cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:* versions from (including) 11.1.0 up to (excluding) 11.1.2
*cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:* versions from (including) 11.1.0 up to (excluding) 11.1.2
Added
CVSS V2
(AV:N/AC:M/Au:N/C:N/I:P/A:N)
Added
CVSS V2 Metadata
Victim must voluntarily interact with attack mechanism
Added
CVSS V3
AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Added
CWE
CWE-79
Changed
Reference Type
https://about.gitlab.com/2018/07/26/security-release-gitlab-11-dot-1-dot-2-released/ No Types Assigned