CVE-2019-15729

An issue was discovered in GitLab Community and Enterprise Edition 8.18 through 12.2.1. An internal endpoint unintentionally disclosed information about the last pipeline that ran for a merge request.

Link	Resource
https://about.gitlab.com/2019/08/29/security-release-gitlab-12-dot-2-dot-3-released/	Release Notes Vendor Advisory
https://gitlab.com/gitlab-org/gitlab-ce/issues/62073	Broken Link

Configuration 1

cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:* cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:* cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:* cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:* cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:* cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*

---

Published : 2019-09-17 03:15

Updated : 2021-07-21 11:39

---

NVD link : CVE-2019-15729

Mitre link : CVE-2019-15729

No products.

CWE-863