CVE Vulnerabilities

CVE-2023-1098

Published: Apr 05, 2023 | Modified: Apr 12, 2023
CVSS 3.x
4.9
MEDIUM
Source:
NVD
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu

An information disclosure vulnerability has been discovered in GitLab EE/CE affecting all versions starting from 11.5 before 15.8.5, all versions starting from 15.9 before 15.9.4, all versions starting from 15.10 before 15.10.1 will allow an admin to leak password from repository mirror configuration.

Affected Software

Name Vendor Start Version End Version
Gitlab Gitlab 11.5.0 *
Gitlab Gitlab 11.5.0 *
Gitlab Gitlab 15.9.0 *
Gitlab Gitlab 15.9.0 *
Gitlab Gitlab 15.10.0 15.10.0
Gitlab Gitlab 15.10.0 15.10.0

References