Vulnerability Database

289,784

Total vulnerabilities in the database

CVE-2018-17939

An issue was discovered in GitLab Community and Enterprise Edition 11.1.x before 11.1.8, 11.2.x before 11.2.5, and 11.3.x before 11.3.2. There is Information Exposure via the merge request JSON endpoint.

  • Published: Dec 5, 2018
  • Updated: Apr 13, 2023
  • CVE: CVE-2018-17939
  • Severity: High
  • Exploit:

CVSS v3:

  • Severity: High
  • Score: 7.5
  • AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CVSS v2:

  • Severity: Medium
  • Score: 5
  • AV:N/AC:L/Au:N/C:P/I:N/A:N

CWEs:

Software From Fixed in
gitlab / gitlab 11.3.0 11.3.2
gitlab / gitlab 11.2.0 11.2.5
gitlab / gitlab 11.1.0 11.1.8