vulnerability

FreeBSD: VID-11292460-3f2f-11e9-adcb-001b217b3468 (CVE-2019-9171): Gitlab -- Multiple vulnerabilities

Try Surface Command
Back to search
Severity
4
CVSS
(AV:N/AC:M/Au:N/C:P/I:N/A:N)
Published
Mar 5, 2019
Added
Mar 5, 2019
Modified
Mar 25, 2026

Description

Gitlab reports: Arbitrary file read via MergeRequestDiff CSRF add Kubernetes cluster integration Blind SSRF in prometheus integration Merge request information disclosure IDOR milestone name information disclosure Burndown chart information disclosure Private merge request titles in public project information disclosure Private namespace disclosure in email notification when issue is moved Milestone name disclosure Issue board name disclosure NPM automatic package referencer Path traversal snippet mover Information disclosure repo existence Issue DoS via Mermaid Privilege escalation impersonate user

Solution

freebsd-upgrade-package-gitlab-ce

References

Title
Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report