CVE-2023-5117 – GitLab Information Disclosure Weakness

12月 25, 2024
4:17 pm

CVE ID : CVE-2023-5117

Published : Dec. 25, 2024, 3:15 p.m. | 1 hour, 2 minutes ago

Description : An issue was discovered in GitLab CE/EE affecting all versions before 17.6.0 in which users were unaware that files uploaded to comments on confidential issues and epics of public projects could be accessed without authentication via a direct link to the uploaded file URL.

Severity: 3.7 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2023-5117 – GitLab Information Disclosure Weakness

Elvescore.io

Recent Posts

CVE-2024-12967 – Code-Projects Job Recruitment SQL Injectionazard

CVE-2024-12968 – Code-projects Job Recruitment SQL Injection Vulnerability

CVE-2024-45600 – GLPI Fields SQL Injection Vulnerability

CVE-2024-45805 – Apache OpenCTI Unauthenticated Access to Restricted Support Information

CVE-2024-53850 – GLPI Addressing Plugin Information Disclosure Vulnerability

CVE-2024-55950 – Tabby Terminal Entitlements Elevated Privileges Vulnerability

CVE-2023-5117 – GitLab Information Disclosure Weakness

CVE-2023-5117 – GitLab Information Disclosure Weakness