|
222011
|
9.8 |
CRITICAL
Network
|
gitlab
|
gitlab
|
An issue was discovered in GitLab Community and Enterprise Edition before 11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1. Its User Interface has a Misrepresentation of Critical Information.
|
NVD-CWE-noinfo
|
CVE-2019-9217
|
2024-11-21 13:51 |
2019-04-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222012
|
3.7 |
LOW
Network
|
gitlab
|
gitlab
|
An issue was discovered in GitLab Community and Enterprise Edition before 11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1. It allows Information Exposure (issue 5 of 5).
|
CWE-200
Information Exposure
|
CVE-2019-9179
|
2024-11-21 13:51 |
2019-04-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222013
|
5.3 |
MEDIUM
Network
|
gitlab
|
gitlab
|
An issue was discovered in GitLab Community and Enterprise Edition before 11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1. It allows Information Exposure (issue 4 of 5).
|
NVD-CWE-noinfo
|
CVE-2019-9178
|
2024-11-21 13:51 |
2019-04-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222014
|
6.5 |
MEDIUM
Network
|
gitlab
|
gitlab
|
An issue was discovered in GitLab Community and Enterprise Edition before 11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1. It allows CSRF.
|
CWE-352
Origin Validation Error
|
CVE-2019-9176
|
2024-11-21 13:51 |
2019-04-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222015
|
5.3 |
MEDIUM
Network
|
gitlab
|
gitlab
|
An issue was discovered in GitLab Community and Enterprise Edition before 11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1. It allows Information Exposure (issue 3 of 5).
|
CWE-200
Information Exposure
|
CVE-2019-9175
|
2024-11-21 13:51 |
2019-04-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222016
|
10.0 |
CRITICAL
Network
|
gitlab
|
gitlab
|
An issue was discovered in GitLab Community and Enterprise Edition before 11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1. It allows SSRF.
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2019-9174
|
2024-11-21 13:51 |
2019-04-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222017
|
5.9 |
MEDIUM
Network
|
gitlab
|
gitlab
|
An issue was discovered in GitLab Community and Enterprise Edition before 11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1. It allows Information Exposure (issue 2 of 5).
|
NVD-CWE-noinfo
|
CVE-2019-9172
|
2024-11-21 13:51 |
2019-04-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222018
|
3.7 |
LOW
Network
|
gitlab
|
gitlab
|
An issue was discovered in GitLab Community and Enterprise Edition before 11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1. It allows Information Exposure (issue 1 of 5).
|
CWE-862
Missing Authorization
|
CVE-2019-9171
|
2024-11-21 13:51 |
2019-04-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222019
|
5.3 |
MEDIUM
Network
|
gitlab
|
gitlab
|
An issue was discovered in GitLab Community and Enterprise Edition before 11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1. It has Incorrect Access Control.
|
CWE-639
Authorization Bypass Through User-Controlled Key
|
CVE-2019-9170
|
2024-11-21 13:51 |
2019-04-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222020
|
8.1 |
HIGH
Network
|
w1.fi
fedoraproject
opensuse
debian
synology
freebsd
|
hostapd
wpa_supplicant
fedora
leap
backports_sle
debian_linux
router_manager
radius_server
freebsd
|
The implementations of EAP-PWD in wpa_supplicant EAP Peer, when built against a crypto library missing explicit validation on imported elements, do not validate the scalar and element values in EAP-p…
|
CWE-287
Improper Authentication
|
CVE-2019-9499
|
2024-11-21 13:51 |
2019-04-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
