CVE-2021-39902

Incorrect Authorization in GitLab CE/EE 13.4 or above allows a user with guest membership in a project to modify the severity of an incident.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

OR cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*
cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*
cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*
cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*
cpe:2.3:a:gitlab:gitlab:14.4.0:*:*:*:community:*:*:*
cpe:2.3:a:gitlab:gitlab:14.4.0:*:*:*:enterprise:*:*:*

Information

Published : 2021-11-04 16:15

Updated : 2021-11-08 10:23


NVD link : CVE-2021-39902

Mitre link : CVE-2021-39902


JSON object : View

CWE
CWE-863

Incorrect Authorization

Advertisement

dedicated server usa

Products Affected

gitlab

  • gitlab