An issue was discovered in GitLab Community and Enterprise Edition 11.10 through 12.0.2. Unauthorized users were able to read pipeline information of the last merge request. It has Incorrect Access Control.
                
            References
                    | Link | Resource | 
|---|---|
| https://about.gitlab.com/blog/categories/releases/ | Release Notes Vendor Advisory | 
| https://about.gitlab.com/releases/2019/07/03/security-release-gitlab-12-dot-0-dot-3-released/ | Release Notes Vendor Advisory | 
| https://about.gitlab.com/blog/categories/releases/ | Release Notes Vendor Advisory | 
| https://about.gitlab.com/releases/2019/07/03/security-release-gitlab-12-dot-0-dot-3-released/ | Release Notes Vendor Advisory | 
Configurations
                    Configuration 1 (hide)
| 
 | 
History
                    No history.
Information
                Published : 2020-03-10 15:15
Updated : 2024-11-21 04:23
NVD link : CVE-2019-13002
Mitre link : CVE-2019-13002
CVE.ORG link : CVE-2019-13002
JSON object : View
Products Affected
                gitlab
- gitlab
CWE
                