CVE-2018-19571

Name of the Vulnerable Software and Affected Versions GitLab CE/EE versions 8.18 up to 11.3.10 GitLab CE/EE versions 11.4 up to 11.4.7 GitLab CE/EE versions 11.5 up to 11.5.0

Description The issue is related to a Server-Side Request Forgery (SSRF) vulnerability in webhooks. This means an attacker could potentially forge requests to internal services, leading to unauthorized access or actions.

Recommendations For versions 8.18 up to 11.3.10, update to version 11.3.11 or later. For versions 11.4 up to 11.4.7, update to version 11.4.8 or later. For versions 11.5 up to 11.5.0, update to version 11.5.1 or later.