Insecure Object Reference Vulnerability in GitLab EE 11.5

Insecure Object Reference Vulnerability in GitLab EE 11.5

CVE-2018-19578 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:N/A:N

GitLab EE, version 11.5 before 11.5.1, is vulnerable to an insecure object reference issue that permits a user with Reporter privileges to view the Jaeger Tracing Operations page.

Learn more about our User Device Pen Test.