CVE-2018-20507 | SynScan

Vulnerability Database

290,278

Total vulnerabilities in the database

CVE-2018-20507

An issue was discovered in GitLab Enterprise Edition 11.2.x through 11.4.x before 11.4.13, 11.5.x before 11.5.6, and 11.6.x before 11.6.1. It has Incorrect Access Control.

Published: Dec 30, 2019
Updated: Apr 13, 2023
CVE: CVE-2018-20507
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 5.3
AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:N/I:P/A:N

CWEs:

CWE-306

Affected Software
References

Software	From	Fixed in
gitlab / gitlab	11.5.0	11.5.6
gitlab / gitlab	11.6.0	11.6.1
gitlab / gitlab	11.2.0	11.4.13

https://about.gitlab.com/2018/12/31/security-release-gitlab-11-dot-6-dot-1-released/