CVE-2019-13011

An issue was discovered in GitLab Enterprise Edition 8.11.0 through 12.0.2. By using brute-force a user with access to a project, but not it's repository could create a list of merge requests template names. It has excessive algorithmic complexity.
Configurations

Configuration 1

cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*

Information

Published : 2020-03-10 06:15

Updated : 2020-08-24 05:37


NVD link : CVE-2019-13011

Mitre link : CVE-2019-13011

Products Affected
No products.
CWE