CVE-2019-5461
09.09.2019, 17:15
An input validation problem was discovered in the GitHub service integration which could result in an attacker being able to make arbitrary POST requests in a GitLab instance's internal network. This vulnerability was addressed in 12.1.2, 12.0.4, and 11.11.6.Enginsight
Vendor | Product | Version |
---|---|---|
gitlab | gitlab | 11.11.0 ≤ 𝑥 < 11.11.7 |
gitlab | gitlab | 11.11.0 ≤ 𝑥 < 11.11.7 |
gitlab | gitlab | 12.0.0 ≤ 𝑥 < 12.0.4 |
gitlab | gitlab | 12.0.0 ≤ 𝑥 < 12.0.4 |
gitlab | gitlab | 12.1.0 ≤ 𝑥 < 12.1.2 |
gitlab | gitlab | 12.1.0 ≤ 𝑥 < 12.1.2 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration