Insecure Permissions in GitLab Releases Feature

Insecure Permissions in GitLab Releases Feature

CVE-2019-10115 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:N/A:N

An Insecure Permissions issue (issue 2 of 3) was discovered in GitLab Community and Enterprise Edition before 11.7.8, 11.8.x before 11.8.4, and 11.9.x before 11.9.2. The GitLab Releases feature could allow guest users access to private information like release details and code information.

Learn more about our User Device Pen Test.