An issue has been discovered in GitLab EE affecting all versions starting from 15.7 before 15.10.8, all versions starting from 15.11 before 15.11.7, all versions starting from 16.0 before 16.0.2. It was possible to disclose issue notes to an unauthorized user at project export.
References
Link | Resource |
---|---|
https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-1825.json | Vendor Advisory |
https://gitlab.com/gitlab-org/gitlab/-/issues/384035 | Broken Link |
Configurations
Configuration 1 (hide)
|
History
08 Oct 2024, 19:39
Type | Values Removed | Values Added |
---|---|---|
CWE | NVD-CWE-Other |
03 Oct 2024, 07:15
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-201 |
14 Jun 2023, 01:16
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) https://gitlab.com/gitlab-org/gitlab/-/issues/384035 - Broken Link | |
References | (CONFIRM) https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-1825.json - Vendor Advisory | |
CWE | CWE-668 | |
CPE | cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:* | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 4.3 |
07 Jun 2023, 17:28
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-06-07 17:15
Updated : 2024-10-08 19:39
NVD link : CVE-2023-1825
Mitre link : CVE-2023-1825
CVE.ORG link : CVE-2023-1825
JSON object : View
Products Affected
gitlab
- gitlab
CWE