Vulnerability Details CVE-2019-14943
An issue was discovered in GitLab Community and Enterprise Edition 12.0 through 12.1.4. It uses Hard-coded Credentials.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 53.1%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References
- https://about.gitlab.com/2019/08/12/critical-security-release-gitlab-12-dot-1-dot-6-released/
- https://about.gitlab.com/blog/categories/releases/
- https://gitlab.com/gitlab-org/omnibus-gitlab/issues/4530
- https://about.gitlab.com/2019/08/12/critical-security-release-gitlab-12-dot-1-dot-6-released/
- https://about.gitlab.com/blog/categories/releases/
- https://gitlab.com/gitlab-org/omnibus-gitlab/issues/4530
Products affected by CVE-2019-14943
-
cpe:2.3:a:gitlab:gitlab:12.0
-
cpe:2.3:a:gitlab:gitlab:12.0.0
-
cpe:2.3:a:gitlab:gitlab:12.0.1
-
cpe:2.3:a:gitlab:gitlab:12.0.10
-
cpe:2.3:a:gitlab:gitlab:12.0.12
-
cpe:2.3:a:gitlab:gitlab:12.0.2
-
cpe:2.3:a:gitlab:gitlab:12.0.3
-
cpe:2.3:a:gitlab:gitlab:12.0.4
-
cpe:2.3:a:gitlab:gitlab:12.0.5
-
cpe:2.3:a:gitlab:gitlab:12.0.6
-
cpe:2.3:a:gitlab:gitlab:12.0.7
-
cpe:2.3:a:gitlab:gitlab:12.0.8
-
cpe:2.3:a:gitlab:gitlab:12.0.9
-
cpe:2.3:a:gitlab:gitlab:12.1.0
-
cpe:2.3:a:gitlab:gitlab:12.1.1
-
cpe:2.3:a:gitlab:gitlab:12.1.2
-
cpe:2.3:a:gitlab:gitlab:12.1.3
-
cpe:2.3:a:gitlab:gitlab:12.1.4