Shodan
Vulnerabilities
Vulnerable Software
Gitlab:  >> Gitlab  >> 11.0.2  Security Vulnerabilities
CVE-2018-17975
An issue was discovered in GitLab Community Edition 11.x before 11.1.8, 11.2.x before 11.2.5, and 11.3.x before 11.3.2. There is Information Exposure via the GFM markdown API.
CVSS Score
5.3
EPSS Score
0.001
Published
2018-12-04
CVE-2018-17976
An issue was discovered in GitLab Community Edition 11.x before 11.1.8, 11.2.x before 11.2.5, and 11.3.x before 11.3.2. There is Information Exposure via Epic change descriptions.
CVSS Score
6.5
EPSS Score
0.001
Published
2018-12-04
CVE-2018-18640
An issue was discovered in GitLab Community and Enterprise Edition before 11.2.7, 11.3.x before 11.3.8, and 11.4.x before 11.4.3. It has Information Exposure Through Browser Caching.
CVSS Score
6.5
EPSS Score
0.001
Published
2018-12-04
CVE-2018-18641
An issue was discovered in GitLab Community and Enterprise Edition before 11.2.7, 11.3.x before 11.3.8, and 11.4.x before 11.4.3. It has Cleartext Storage of Sensitive Information.
CVSS Score
9.8
EPSS Score
0.001
Published
2018-12-04
CVE-2018-18642
An issue was discovered in GitLab Community and Enterprise Edition before 11.2.7, 11.3.x before 11.3.8, and 11.4.x before 11.4.3. It has XSS.
CVSS Score
6.1
EPSS Score
0.001
Published
2018-12-04
CVE-2018-18645
An issue was discovered in GitLab Community and Enterprise Edition before 11.2.7, 11.3.x before 11.3.8, and 11.4.x before 11.4.3. It allows for Information Exposure via unsubscribe links in email replies.
CVSS Score
4.3
EPSS Score
0.001
Published
2018-12-04
CVE-2018-18646
An issue was discovered in GitLab Community and Enterprise Edition before 11.2.7, 11.3.x before 11.3.8, and 11.4.x before 11.4.3. It allows SSRF.
CVSS Score
8.8
EPSS Score
0.002
Published
2018-12-04
CVE-2018-18647
An issue was discovered in GitLab Community and Enterprise Edition before 11.2.7, 11.3.x before 11.3.8, and 11.4.x before 11.4.3. It has Missing Authorization.
CVSS Score
6.5
EPSS Score
0.001
Published
2018-12-04
CVE-2018-18843
The Kubernetes integration in GitLab Enterprise Edition 11.x before 11.2.8, 11.3.x before 11.3.9, and 11.4.x before 11.4.4 has SSRF.
CVSS Score
10.0
EPSS Score
0.003
Published
2018-12-04
CVE-2018-16048
An issue was discovered in GitLab Community and Enterprise Edition before 11.0.6, 11.1.x before 11.1.5, and 11.2.x before 11.2.2. There is Missing Authorization Control for API Repository Storage.
CVSS Score
6.5
EPSS Score
0.001
Published
2018-10-03


Products
Pricing
Contact Us

Shodan ® - All rights reserved