ghsa-h2w4-xw94-vcj3
Vulnerability from github
Published
2022-05-24 17:10
Modified
2022-05-24 17:10
Details
An issue was discovered in GitLab Enterprise Edition 10.6 through 12.0.2. The GitHub project integration was vulnerable to an SSRF vulnerability which allowed an attacker to make requests to local network resources. It has Incorrect Access Control.
{ "affected": [], "aliases": [ "CVE-2019-13121" ], "database_specific": { "cwe_ids": [], "github_reviewed": false, "github_reviewed_at": null, "nvd_published_at": "2020-03-10T18:15:00Z", "severity": "MODERATE" }, "details": "An issue was discovered in GitLab Enterprise Edition 10.6 through 12.0.2. The GitHub project integration was vulnerable to an SSRF vulnerability which allowed an attacker to make requests to local network resources. It has Incorrect Access Control.", "id": "GHSA-h2w4-xw94-vcj3", "modified": "2022-05-24T17:10:34Z", "published": "2022-05-24T17:10:34Z", "references": [ { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-13121" }, { "type": "WEB", "url": "https://about.gitlab.com/blog/categories/releases" }, { "type": "WEB", "url": "https://about.gitlab.com/releases/2019/07/03/security-release-gitlab-12-dot-0-dot-3-released" } ], "schema_version": "1.4.0", "severity": [] }
Loading...