CVE-2019-18457

High

An issue was discovered in GitLab Community and Enterprise Edition 11.8 through 12.4 when handling Security tokens.. It has Insecure…

mitre·CWE-281·Published 2019-11-26

CVSS

8.8

EPSS

0.01

KEV

Exploits

cve.orgen

145 chars

An issue was discovered in GitLab Community and Enterprise Edition 11.8 through 12.4 when handling Security tokens.. It has Insecure Permissions.

NVDen

145 chars

An issue was discovered in GitLab Community and Enterprise Edition 11.8 through 12.4 when handling Security tokens.. It has Insecure Permissions.

Se detectó un problema en GitLab Community and Enterprise Edition versiones 11.8 hasta 12.4, cuando maneja tokens de Seguridad. Posee Permisos No Seguros.

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	6.5	8.0	6.4	AV:N/AC:L/Au:S/C:P/I:P/A:P
3.1	Primary	NVD	8.8	2.8	5.9	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H