← back
CVE-2019-13001

CVE-2019-13001

EPSS 0.7%
An issue was discovered in GitLab Community and Enterprise Edition 11.9 and later through 12.0.2. GitLab Snippets were vulnerable to an authorization issue that allowed unauthorized users to add comments to a private snippet. It allows authentication bypass.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://about.gitlab.com/blog/categories/releases/https://about.gitlab.com/releases/2019/07/03/security-release-gitlab-12-dot-0-dot-3-released/