| Max CVSS | 6.8 | Min CVSS | 3.5 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2018-14601 | 5.0 |
An issue was discovered in GitLab Community and Enterprise Edition 11.1.x before 11.1.2. A Denial of Service can occur because Markdown rendering times are slow.
|
03-10-2019 - 00:03 | 27-07-2018 - 02:29 | |
| CVE-2018-14602 | 5.0 |
An issue was discovered in GitLab Community and Enterprise Edition before 10.8.7, 11.0.x before 11.0.5, and 11.1.x before 11.1.2. Information Disclosure can occur because the Prometheus metrics feature discloses private project pathnames.
|
18-09-2018 - 18:25 | 27-07-2018 - 02:29 | |
| CVE-2018-14603 | 6.8 |
An issue was discovered in GitLab Community and Enterprise Edition before 10.8.7, 11.0.x before 11.0.5, and 11.1.x before 11.1.2. CSRF can occur in the Test feature of the System Hooks component.
|
18-09-2018 - 18:17 | 27-07-2018 - 02:29 | |
| CVE-2018-14604 | 4.3 |
An issue was discovered in GitLab Community and Enterprise Edition before 10.8.7, 11.0.x before 11.0.5, and 11.1.x before 11.1.2. XSS can occur in the tooltip of the job inside the CI/CD pipeline.
|
18-09-2018 - 18:16 | 27-07-2018 - 02:29 | |
| CVE-2018-14606 | 3.5 |
An issue was discovered in GitLab Community and Enterprise Edition before 10.8.7, 11.0.x before 11.0.5, and 11.1.x before 11.1.2. XSS can occur via a Milestone name during a promotion.
|
18-09-2018 - 18:16 | 27-07-2018 - 02:29 | |
| CVE-2018-14605 | 3.5 |
An issue was discovered in GitLab Community and Enterprise Edition before 10.8.7, 11.0.x before 11.0.5, and 11.1.x before 11.1.2. XSS can occur in the branch name during a Web IDE file commit.
|
18-09-2018 - 18:15 | 27-07-2018 - 02:29 |