CVE-2017-11437

GitLab Enterprise Edition (EE) before 8.17.7, 9.0.11, 9.1.8, 9.2.8, and 9.3.8 allows an authenticated user with the ability to create a project to use the mirroring feature to potentially read repositories belonging to other users.

CVSS v3.0 6.5 MEDIUM
CVSS v2.0 4.0 MEDIUM

6.5^/10

CVSS v3.0 : MEDIUM

V3 Legend

Vector : AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Exploitability : 2.8 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

4.0^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:L/Au:S/C:P/I:N/A:N

Exploitability : 8.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication SINGLE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References

Link	Resource
https://about.gitlab.com/2017/07/19/gitlab-9-dot-3-dot-8-released/	Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:gitlab:gitlab:8.6.3::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.6.5::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.7.2::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.7.4::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.7.9::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.8.1::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.8.8::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.9.0::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.9.5::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.9.7::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.10.12::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.11.6::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.17.2::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.11.8::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.12.9::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.6.7::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.15.4::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.16.5::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.14.4::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.6.9::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.6.8::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.13.6::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.14.2::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.16.3::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.12.2::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.10.3::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.15.2::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.13.8::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.17.0::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.11.1::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.13.1::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.10.9::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.12.11::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.5.10::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.7.7::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.7.8::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.9.2::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.14.1::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.17.6::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.9.10::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.12.6::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.17.5::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.8.3::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.11.11::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.6.1::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.10.5::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.7.0::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.14.0::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.10.6::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.11.3::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.14.10::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.10.4::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.10.0::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.8.6::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.6.0::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.12.7::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.10.7::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.16.0::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.8.5::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.15.8::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.11.2::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.15.7::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.9.3::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:8.10.10::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.10.1::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.7.5::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.8.4::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.13.9::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.12.5::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.11.4::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.12.8::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.5.1::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.10.11::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.12.4::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.16.1::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.9.11::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.7.6::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.12.0::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.11.9::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.5.2::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.5.0::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.7.1::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.13.2::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.13.3::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.13.0::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.5.9::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.6.6::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.5.5::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.5.13::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.5.6::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.16.8::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.13.10::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.11.0::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.12.1::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.14.5::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.15.6::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.8.9::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.15.3::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.16.6::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.10.2::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.12.12::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.7.3::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.11.10::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.13.11::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.10.13::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.16.7::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.6.2::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.16.2::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.11.5::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.15.1::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.13.5::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.13.7::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.14.3::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.5.8::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.17.3::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.17.4::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.5.7::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.12.3::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.8.2::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.8.0::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.13.4::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.12.10::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.9.6::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.5.12::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.15.0::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.6.4::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.16.9::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.5.4::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.14.6::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.14.8::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.10.8::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.5.3::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.9.1::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.16.4::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.8.7::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.17.1::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.9.4::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.11.7::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.14.9::::enterprise:::
cpe:2.3:a:gitlab:gitlab:8.5.11::::enterprise:::

Configuration 2 (hide)

OR	cpe:2.3:a:gitlab:gitlab:9.0.1::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:9.0.3::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:9.0.8::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:9.0.10::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:9.0.4::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:9.0.5::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:9.0.6::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:9.0.7::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:9.0.0::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:9.0.2::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:9.0.9::::enterprise:::

Configuration 3 (hide)

OR	cpe:2.3:a:gitlab:gitlab:9.1.5::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:9.1.7::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:9.1.0::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:9.1.1::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:9.1.2::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:9.1.3::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:9.1.4::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:9.1.6::::enterprise:::

Configuration 4 (hide)

OR	cpe:2.3:a:gitlab:gitlab:9.2.5::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:9.2.7::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:9.2.0::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:9.2.1::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:9.2.2::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:9.2.3::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:9.2.4::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:9.2.6::::enterprise:::

Configuration 5 (hide)

OR	cpe:2.3:a:gitlab:gitlab:9.3.3::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:9.3.5::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:9.3.0::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:9.3.1::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:9.3.2::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:9.3.7::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:9.3.4::::enterprise:::
	cpe:2.3:a:gitlab:gitlab:9.3.6::::enterprise:::

Information

Published : 2017-08-02 12:29

Updated : 2019-10-02 17:03

NVD link : CVE-2017-11437

Mitre link : CVE-2017-11437

JSON object : View

CWE

CWE-732

Incorrect Permission Assignment for Critical Resource

Products Affected

gitlab

gitlab

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "https://about.gitlab.com/2017/07/19/gitlab-9-dot-3-dot-8-released/", "name": "https://about.gitlab.com/2017/07/19/gitlab-9-dot-3-dot-8-released/", "tags": ["Vendor Advisory"], "refsource": "CONFIRM"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "GitLab Enterprise Edition (EE) before 8.17.7, 9.0.11, 9.1.8, 9.2.8, and 9.3.8 allows an authenticated user with the ability to create a project to use the mirroring feature to potentially read repositories belonging to other users."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "CWE-732"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2017-11437", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 4.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:S/C:P/I:N/A:N", "authentication": "SINGLE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "severity": "MEDIUM", "impactScore": 2.9, "obtainAllPrivilege": false, "exploitabilityScore": 8.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}, "baseMetricV3": {"cvssV3": {"scope": "UNCHANGED", "version": "3.0", "baseScore": 6.5, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 3.6, "exploitabilityScore": 2.8}}, "publishedDate": "2017-08-02T19:29Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.6.3:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.6.5:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.7.2:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.7.4:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.7.9:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.8.1:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.8.8:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.9.0:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.9.5:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.9.7:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.10.12:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.11.6:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.17.2:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.11.8:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.12.9:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.6.7:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.15.4:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.16.5:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.14.4:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.6.9:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.6.8:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.13.6:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.14.2:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.16.3:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.12.2:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.10.3:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.15.2:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.13.8:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.17.0:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.11.1:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.13.1:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.10.9:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.12.11:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.5.10:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.7.7:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.7.8:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.9.2:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.14.1:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.17.6:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.9.10:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.12.6:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.17.5:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.8.3:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.11.11:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.6.1:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.10.5:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.7.0:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.14.0:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.10.6:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.11.3:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.14.10:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.10.4:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.10.0:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.8.6:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.6.0:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.12.7:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.10.7:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.16.0:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.8.5:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.15.8:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.11.2:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.15.7:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.9.3:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.10.10:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.10.1:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.7.5:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.8.4:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.13.9:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.12.5:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.11.4:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.12.8:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.5.1:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.10.11:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.12.4:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.16.1:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.9.11:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.7.6:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.12.0:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.11.9:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.5.2:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.5.0:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.7.1:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.13.2:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.13.3:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.13.0:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.5.9:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.6.6:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.5.5:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.5.13:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.5.6:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.16.8:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.13.10:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.11.0:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.12.1:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.14.5:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.15.6:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.8.9:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.15.3:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.16.6:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.10.2:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.12.12:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.7.3:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.11.10:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.13.11:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.10.13:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.16.7:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.6.2:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.16.2:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.11.5:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.15.1:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.13.5:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.13.7:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.14.3:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.5.8:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.17.3:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.17.4:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.5.7:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.12.3:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.8.2:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.8.0:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.13.4:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.12.10:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.9.6:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.5.12:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.15.0:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.6.4:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.16.9:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.5.4:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.14.6:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.14.8:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.10.8:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.5.3:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.9.1:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.16.4:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.8.7:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.17.1:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.9.4:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.11.7:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.14.9:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:8.5.11:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}]}, {"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:9.0.1:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:9.0.3:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:9.0.8:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:9.0.10:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:9.0.4:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:9.0.5:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:9.0.6:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:9.0.7:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:9.0.0:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:9.0.2:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:9.0.9:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}]}, {"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:9.1.5:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:9.1.7:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:9.1.0:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:9.1.1:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:9.1.2:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:9.1.3:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:9.1.4:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:9.1.6:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}]}, {"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:9.2.5:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:9.2.7:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:9.2.0:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:9.2.1:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:9.2.2:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:9.2.3:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:9.2.4:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:9.2.6:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}]}, {"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:9.3.3:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:9.3.5:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:9.3.0:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:9.3.1:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:9.3.2:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:9.3.7:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:9.3.4:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gitlab:gitlab:9.3.6:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2019-10-03T00:03Z"}

6.5 /10

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

4.0 /10

Access Vector NETWORK

Access Complexity LOW

Authentication SINGLE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

JSON object

Attach tags to CVE-2017-11437

6.5^/10

4.0^/10

Attach tags to `CVE-2017-11437`