Vulnerability Database

290,206

Total vulnerabilities in the database

CVE-2019-6792

An issue was discovered in GitLab Community and Enterprise Edition before 11.5.8, 11.6.x before 11.6.6, and 11.7.x before 11.7.1. It allows Path Disclosure. When an error is encountered on project import, the error message will display instance internal information.

  • Published: Sep 9, 2019
  • Updated: Apr 13, 2023
  • CVE: CVE-2019-6792
  • Severity: Medium
  • Exploit:

CVSS v3:

  • Severity: Medium
  • Score: 5.3
  • AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

CVSS v2:

  • Severity: Medium
  • Score: 5
  • AV:N/AC:L/Au:N/C:P/I:N/A:N

CWEs:

OWASP TOP 10:

Software From Fixed in
gitlab / gitlab 11.7.0 11.7.1
gitlab / gitlab 11.6.0 11.6.6
gitlab / gitlab 8.9.0 11.5.8