CVE-2017-0922

CVE-2017-0922

Vendor Gitlab
Product GitLab Community and Enterprise Editions
Weakness CWE-639 · IDOR
Published March 21, 2018
Last update August 5, 2024

CVSS base score

What the vulnerability does

01Description

Gitlab Enterprise Edition version 10.3 is vulnerable to an authorization bypass issue in the GitLab Projects::BoardsController component resulting in an information disclosure on any board object.

Key dates

02Disclosure timeline

March 21, 2018 CVE published
August 5, 2024 Record updated