Vulnerability Database

289,871

Total vulnerabilities in the database

CVE-2019-5883

An Incorrect Access Control issue was discovered in GitLab Community and Enterprise Edition 6.0 and later but before 11.3.11, 11.4.x before 11.4.8, and 11.5.x before 11.5.1. The issue comments feature could allow a user to comment on an issue which they shouldn't be allowed to.

  • Published: May 17, 2019
  • Updated: Apr 13, 2023
  • CVE: CVE-2019-5883
  • Severity: Critical
  • Exploit:

CVSS v3:

  • Severity: Critical
  • Score: 9.1
  • AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

CVSS v2:

  • Severity: Medium
  • Score: 6.4
  • AV:N/AC:L/Au:N/C:P/I:P/A:N

No CWE or OWASP classifications available.

Software From Fixed in
gitlab / gitlab 6.0.0 11.3.11
gitlab / gitlab 11.4.0 11.4.8
gitlab / gitlab 11.5.0 11.5.1