CVE Vulnerabilities

CVE-2023-1710

Published: Apr 05, 2023 | Modified: Apr 12, 2023
CVSS 3.x
5.3
MEDIUM
Source:
NVD
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu
MEDIUM

A sensitive information disclosure vulnerability in GitLab affecting all versions from 15.0 prior to 15.8.5, 15.9 prior to 15.9.4 and 15.10 prior to 15.10.1 allows an attacker to view the count of internal notes for a given issue.

Affected Software

Name Vendor Start Version End Version
Gitlab Gitlab 15.0.0 (including) 15.8.5 (excluding)
Gitlab Gitlab 15.9.0 (including) 15.9.4 (excluding)
Gitlab Gitlab 15.10.0 (including) 15.10.0 (including)
Gitlab Ubuntu esm-apps/xenial *
Gitlab Ubuntu upstream *

References