PT-2020-19883 · Gitlab · Gitlab Ce/Ee+1

Ashish_R_Padelkar

·

Published

2020-02-05

·

Updated

2024-03-06

·

CVE-2020-7967

CVSS v3.1

4.3

Medium

VectorAV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Name of the Vulnerable Software and Affected Versions GitLab EE versions 8.0 through 12.7.2
Description The issue concerns insecure permissions in GitLab EE.
Recommendations For GitLab EE versions 8.0 through 12.7.2, update to a version that contains a fix for this issue.

Fix

Incorrect Default Permissions

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-276

Related Identifiers

BIT-GITLAB-2020-7967
CVE-2020-7967

Affected Products

Gitlab
Gitlab Ce/Ee