Main Vulnerability Database SB2019040415

SB2019040415 - Path traversal in GitLab, Gitlab Community Edition

Published: April 4, 2019 Updated: July 17, 2020

Security Bulletin ID SB2019040415

CSH Severity

Medium

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Remote access

Highest impact Information disclosure

Description

This security bulletin contains information about 1 vulnerability.

The vulnerability allows a remote non-authenticated attacker to gain access to sensitive information.

GitLab Community and Enterprise Edition before 11.3.14, 11.4.x before 11.4.12, and 11.5.x before 11.5.5 allows Directory Traversal.

Install update from vendor's website.