TROYANOSYVIRUS
Volver a CVEs

CVE-2019-19087

MEDIUM
4.3

Descripcion

Gitlab Enterprise Edition (EE) before 12.5.1 has Insecure Permissions (issue 2 of 2).

Detalles CVE

Puntuacion CVSS v3.14.3
SeveridadMEDIUM
Vector CVSSCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Vector de ataqueNETWORK
ComplejidadLOW
Privilegios requeridosLOW
Interaccion usuarioNONE
Publicado1/3/2020
Ultima modificacion11/21/2024
Fuentenvd
Avistamientos honeypot0

Productos afectados

gitlab:gitlab

Debilidades (CWE)

CWE-732

Referencias

https://about.gitlab.com/blog/2019/11/27/security-release-gitlab-12-5-1-released/(cve@mitre.org)
https://about.gitlab.com/blog/categories/releases/(cve@mitre.org)
https://about.gitlab.com/blog/2019/11/27/security-release-gitlab-12-5-1-released/(af854a3a-2127-422b-91ae-364da2661108)
https://about.gitlab.com/blog/categories/releases/(af854a3a-2127-422b-91ae-364da2661108)

Correlaciones IOC

Sin correlaciones registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.