Security Lab

Множественные уязвимости в Gitlab Community Edition

Дата публикации:30.10.2018
Всего просмотров:2172
Опасность:
Высокая
Наличие исправления: Да
Количество уязвимостей:10
CVSSv3.1 рейтинг: 10 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C]
6.1 [CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N/E:U/RL:O/RC:C]
7.3 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L/E:U/RL:O/RC:C]
6.1 [CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N/E:U/RL:O/RC:C]
5.3 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N/E:U/RL:O/RC:C]
5.3 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N/E:U/RL:O/RC:C]
5.3 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N/E:U/RL:O/RC:C]
6.1 [CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N/E:U/RL:O/RC:C]
5.3 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N/E:U/RL:O/RC:C]
7.3 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L/E:U/RL:O/RC:C]
CVE ID: CVE-2018-18649
CVE-2018-18646
CVE-2018-18641
CVE-2018-18643
CVE-2018-18648
CVE-2018-18640
CVE-2018-18645
CVE-2018-18642
CVE-2018-18644
CVE-2018-18647
Вектор эксплуатации: Удаленная
Воздействие: Межсайтовый скриптинг
Раскрытие важных данных
Неавторизованное изменение данных
Обход ограничений безопасности
Компрометация системы
CWE ID: Нет данных
Наличие эксплоита: Нет данных
Уязвимые продукты: Gitlab Community Edition
Уязвимые версии: Gitlab Community Edition версии 11.4, 11.3.5, 11.3.6, 11.3.4, 11.3.3, 11.3, 11.2.1, 11.2, 11.0.6, 11.1.6, 11.2.3, 11.1.4, 10.8.7, 11.0.5, 11.1.2, 11.1.1, 11.1, 10.7.7, 10.8.6, 11.0.4, 11.0.3, 11.0.2, 11.0, 10.8.4, 10.8.3, 10.6.6, 10.7.5, 10.8.2, 10.8.1, 10.7.4, 10.7.3, 10.5.8, 10.6.5, 10.7.2, 10.7.1, 10.6.4, 10.4.7, 10.5.7, 10.6.3, 10.6.2, 10.6.1, 10.6, 10.5, 10.2.8, 10.4, 10.0.7, 10.2, 9.5.10, 10.0.6, 10.0.5, 10.1, 9.4.7, 9.5.9, 10.0.4, 10.0.3, 9.5.8, 9.5.7, 9.5.6, 10.0.2, 10.0.1, 10.0, 9.55, 9.3.11, 9.4.6, 9.5.4, 9.5.3, 9.5.2, 9.5.1, 9.5, 9.4.5, 8.17.8, 9.0.13, 9.1.10, 9.2.10, 9.3.10, 9.4.4, 9.4.3, 9.4.2, 9.4.1, 9.4, 9.0.12, 9.1.9, 9.2.9, 9.3.9, 8.17.7, 9.0.11, 9.1.8, 9.2.8, 9.3.8, 9.3.7, 9.3.6, 9.3.5, 9.3.4, 9.3.3, 9.3.2, 9.3.1, 9.3, 9.2.7, 9.2.6, 9.0.10, 9.1.7, 9.2.5, 9.2.2, 9.2.1, 9.2, 9.1.4, 8.17.6, 9.0.7, 9.1.3, 9.1.2, 9.1.1, 9.1, 9.0.6, 9.0.5, 8.16.9, 8.17.5, 9.0.4, 9.0.3, 9.0.2, 9.0.1, 9.0, 8.15.8, 8.16.8, 8.17.4, 8.17.3, 8.17.2, 8.17.1, 8.17, 8.16.7, 8.16.6, 8.14.10, 8.15.7, 8.14.9, 8.15.6, 8.16.5, 8.16.4, 8.16.3, 8.14.8, 8.16.2, 8.13.12, 8.14.7, 8.15.5, 8.16.1, 8.13.11, 8.14.6, 8.15.4, 8.15.3, 8.15.2, 8.15.1, 8.15, 8.12.13, 8.14.5, 8.14.4, 8.14.3, 8.14.2, 8.14.1, 8.14, 8.13.10, 8.13.9, 8.13.8, 8.13.7, 8.13.6, 8.13.5, 8.13.3, 8.13.2, 8.13.1, 8.13, 8.12.12, 8.12.11, 8.12.10, 8.12.9, 8.12.8, 8.12.7, 8.12.6, 8.12.5, 8.12.4, 8.12.3, 8.12.1, 8.12, 8.11.11, 8.11.10, 8.11.9, 8.11.8, 8.11.7, 8.11.6, 8.11.5, 8.11.4, 8.11.3, 8.11.2, 8.11.1, 8.11, 8.10.13, 8.10.12, 8.10.11, 8.10.10, 8.10.9, 8.10.8, 8.10.7, 8.10.6, 8.10.5, 8.10.4, 8.10.3, 8.10.2, 8.10.1, 8.10, 8.9.11, 8.9.10, 8.9.9, 8.9.8, 8.9.7, 8.9.6, 8.9.5, 8.9.4, 8.9.3, 8.9.2, 8.9.1, 8.9, 8.8.9, 8.8.8, 8.7.9, 8.7.8, 8.8.7, 8.8.6, 8.8.5, 8.8.4, 8.8.3, 8.8.2, 8.8.1, 8.8, 8.7.6, 8.7.5, 8.7.4, 8.7.3, 8.7.2, 8.7, 8.6.7, 8.6.6, 8.6.5, 8.6.4, 8.6.3, 8.6.2, 8.6.1, 8.6, 8.5.11, 8.5.10, 8.5.9, 8.5.8, 8.5.7, 8.5.6, 8.5.5, 8.5.4, 8.5.3, 8.5.2, 8.5.1, 8.5, 8.4.9, 8.4.8, 8.4.7, 8.4.6, 8.4.5, 8.4.4, 8.4.3, 8.4.2, 8.4.1, 8.4, 8.3.8, 8.3.7, 8.3.6, 8.3.5, 8.3.4, 8.3.3, 8.3.2, 8.3.1, 8.3, 8.2.4, 8.2.3, 8.2.2, 8.2.1, 8.2, 8.1.4, 8.1.3, 8.1.2, 8.1.1, 8.0.5, 8.0.4, 8.0.3, 8.0.2, 8.0.1, 8.0, 7.14.3, 7.14, 7.13.5, 7.13, 7.12.2, 7.12.1, 7.12, 7.11.4, 7.11, 7.10.5, 7.10.4, 7.10.2, 7.10.1, 7.10, 7.9.4, 7.9.3, 7.9.2, 7.9.1, 7.9, 7.8.4, 7.8.2, 7.8.1, 7.8, 7.7.2, 7.7.1, 7.7, 7.6.3, 7.6.2, 7.6.1, 7.6, 7.5.3, 7.5.2, 7.5, 7.4.5, 7.4.4, 7.4.3, 7.4.2, 7.4.1, 7.4, 7.3.2, 7.3.1, 7.3, 7.2.2, 7.2.1, 7.2, 7.0.1, 7.0, 6.9.2, 6.9, 6.8.2, 6.8.1, 6.8, 6.7, 6.6.2, 6.6, 6.5, 6.4, 6.3.1, 6.3, 6.2, 6.1, 6.0, 5.4.1, 5.4, 5.3, 10.8, 10.7, 10.7.6, 10.8.5, 11.0.1, 10.3.8, 10.3.5, 10.3.6, 10.3.7, 10.5.0, 10.5.1, 10.5.2, 10.5.3, 10.5.4, 10.5.5, 10.4.0, 10.4.1, 10.4.2, 10.4.3, 10.4.4, 10.4.5, 10.5.6, 10.4.6, 10.3.9, 10.3.1, 10.3.2, 10.2.0, 10.2.1, 10.2.2, 10.2.3, 10.2.5, 10.1.4, 10.1.1, 10.1.2, 10.1.3, 10.1.5, 10.3.4, 10.2.6, 10.1.6, 10.3.3, 10.1.0, 10.3, 10.2.4, 5.2, 5.1, 5.0, 4.2, 4.1, 4.0, 3.1, 3.0, 2.9, 2.8, 2.7, 2.6, 2.5, 2.4, 2.3, 2.2, 2.1, 2.0, 1.2.0, 1.1, 1.0.1
Описание:

Множественные уязвимости в Gitlab Community Edition

Решение: Установите исправление с сайта производителя.
Ссылки: https://www.cybersecurity-help.cz/vdb/SB2018103004