Improper access control in GitLab CE/EE versions 12.4 to 14.5.4, 14.5 to 14.6.4, and 12.6 to 14.7.1 allows project non-members to retrieve the service desk email address
Affected Software
Name |
Vendor |
Start Version |
End Version |
Gitlab |
Gitlab |
12.4.0 |
* |
Gitlab |
Gitlab |
12.4.0 |
* |
References