Security Advisory

CVE-2021-39892

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-01-18 16:52:13

Last updated 2024-08-04 02:20:33

Assigner GitLab

State PUBLISHED

Description

In all versions of GitLab CE/EE since version 12.0, a lower privileged user can import users from projects that they dont have a maintainer role on and disclose email addresses of those users.

← Browse all CVEs View on cve.org ↗