← back
CVE-2019-13005

CVE-2019-13005

EPSS 1.0%
An issue was discovered in GitLab Enterprise Edition and Community Edition 1.10 through 12.0.2. The GitLab graphql service was vulnerable to multiple authorization issues that disclosed restricted user, group, and repository metadata to unauthorized users. It has Incorrect Access Control.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://about.gitlab.com/blog/categories/releases/https://about.gitlab.com/releases/2019/07/03/security-release-gitlab-12-dot-0-dot-3-released/