CVE-2019-6795

Name of the Vulnerable Software and Affected Versions GitLab Community and Enterprise Edition versions 11.5.8 and earlier, 11.6.x before 11.6.6, 11.7.x before 11.7.1

Description The issue is related to Insufficient Visual Distinction of Homoglyphs Presented to a User, where IDN homographs and RTLO characters are rendered to unicode. This could be used for social engineering.

Recommendations For GitLab Community and Enterprise Edition versions 11.5.8 and earlier, update to version 11.5.8 or later. For GitLab Community and Enterprise Edition versions 11.6.x before 11.6.6, update to version 11.6.6 or later. For GitLab Community and Enterprise Edition versions 11.7.x before 11.7.1, update to version 11.7.1 or later.