Total vulnerabilities in the database
GitLab CE/EE, versions 8.6 up to 11.x before 11.3.11, 11.4 before 11.4.8, and 11.5 before 11.5.1, are vulnerable to an access control issue that allows a Guest user to make changes to or delete their own comments on an issue, after the issue was made Confidential.
| Software | From | Fixed in |
|---|---|---|
| gitlab / gitlab | 11.4.0 | 11.4.8 |
| gitlab / gitlab | 11.5.0 | 11.5.1 |
| gitlab / gitlab | 8.6.0 | 11.3.11 |