BIT-gitlab-2023-1710
See a problem?- Import Source
- https://github.com/bitnami/vulndb/tree/main/data/gitlab/BIT-gitlab-2023-1710.json
- JSON Data
- https://api.osv.dev/v1/vulns/BIT-gitlab-2023-1710
- Aliases
- Published
- 2024-03-06T11:10:43.786Z
- Modified
- 2025-04-03T14:40:37.652Z
- Summary
- [none]
- Details
-
A sensitive information disclosure vulnerability in GitLab affecting all versions from 15.0 prior to 15.8.5, 15.9 prior to 15.9.4 and 15.10 prior to 15.10.1 allows an attacker to view the count of internal notes for a given issue.
- Database specific
{ "cpes": [ "cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*", "cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*", "cpe:2.3:a:gitlab:gitlab:15.10.0:*:*:*:community:*:*:*", "cpe:2.3:a:gitlab:gitlab:15.10.0:*:*:*:enterprise:*:*:*", "cpe:2.3:a:gitlab:gitlab:*:*:*:*:*:*:*:*" ], "severity": "Medium" }- References
Affected packages
Bitnami / gitlab
Package
- Name
- gitlab
- Purl
- pkg:bitnami/gitlab
Severity
- 5.3 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVSS Calculator