Security Advisory

CVE-2019-15591

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-12-18 20:51:27

Last updated 2024-08-05 00:49:13

Assigner hackerone

State PUBLISHED

Description

An improper access control vulnerability exists in GitLab <12.3.3 that allows an attacker to obtain container and dependency scanning reports through the merge request widget even though public pipelines were disabled.

← Browse all CVEs View on cve.org ↗