CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2019-7353

An Incorrect Access Control issue was discovered in GitLab Community and Enterprise Edition 11.7.x before 11.7.4. GitLab Releases were vulnerable to an authorization issue that allowed users to view confidential issue and merge request titles of other projects.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 34.9%

CVSS Severity

CVSS v3 Score 9.1

CVSS v2 Score 6.4

References

https://about.gitlab.com/2019/02/05/critical-security-release-gitlab-11-dot-7-dot-4-released/
https://gitlab.com/gitlab-org/gitlab-ce/issues/56568
https://about.gitlab.com/2019/02/05/critical-security-release-gitlab-11-dot-7-dot-4-released/
https://gitlab.com/gitlab-org/gitlab-ce/issues/56568

Products affected by CVE-2019-7353

Gitlab » Gitlab » Version: 11.7.0

cpe:2.3:a:gitlab:gitlab:11.7.0
Gitlab » Gitlab » Version: 11.7.1

cpe:2.3:a:gitlab:gitlab:11.7.1
Gitlab » Gitlab » Version: 11.7.2

cpe:2.3:a:gitlab:gitlab:11.7.2
Gitlab » Gitlab » Version: 11.7.3

cpe:2.3:a:gitlab:gitlab:11.7.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-7353

Products

Pricing

Contact Us