Vulnerability Database

289,784

Total vulnerabilities in the database

CVE-2019-14942

An issue was discovered in GitLab Community and Enterprise Edition before 11.11.8, 12 before 12.0.6, and 12.1 before 12.1.6. Cookies for GitLab Pages (which have access control) could be sent over cleartext HTTP.

  • Published: Apr 16, 2023
  • Updated: Apr 26, 2023
  • CVE: CVE-2019-14942
  • Severity: Medium
  • Exploit:

CVSS v3:

  • Severity: Medium
  • Score: 5.9
  • AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

CWEs:

OWASP TOP 10:

Software From Fixed in
gitlab / gitlab - 11.11.8
gitlab / gitlab 12.0.0 12.0.6
gitlab / gitlab 12.1.0 12.1.6