CVE-2023-1710

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2023-1710

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-1710.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2023-1710

Aliases

BIT-gitlab-2023-1710

Related

UBUNTU-CVE-2023-1710

Published

2023-04-05T21:15:07Z

Modified

2025-02-10T21:15:14Z

Severity

5.3 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVSS Calculator

Summary

[none]

Details

A sensitive information disclosure vulnerability in GitLab affecting all versions from 15.0 prior to 15.8.5, 15.9 prior to 15.9.4 and 15.10 prior to 15.10.1 allows an attacker to view the count of internal notes for a given issue.

References

Affected packages

Git / gitlab.com/gitlab-org/gitlab

Affected ranges

Type: GIT
Repo: https://gitlab.com/gitlab-org/gitlab
Events: Introduced

3b397c1753233301037d0ca3caae23ce116505d3

Fixed

b46679ba4f4f80f63501a36d605e4691090384f4