2018-12-05 00:29:00 2019-02-05 16:19:02

The Kubernetes integration in GitLab Enterprise Edition 11.x before 11.2.8, 11.3.x before 11.3.9, and 11.4.x before 11.4.4 has SSRF.

Vector

NETWORK

Complexity

LOW

Authentication

NONE

Confidentiality

PARTIAL

Integrity

PARTIAL

Availability

PARTIAL
Gitlab Gitlab 11.0.0 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.0.1 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.0.2 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.0.3 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.0.4 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.0.5 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.0.6 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.1.0 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.1.1 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.1.2 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.1.3 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.1.4 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.1.5 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.1.6 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.1.7 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.2.0 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.2.1 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.2.2 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.2.3 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.2.4 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.2.5 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.2.6 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.2.7 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.3.0 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.3.1 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.3.2 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.3.3 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.3.4 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.3.5 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.3.6 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.3.7 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.3.8 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.4.0 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.4.1 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.4.2 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.4.3 ~~enterprise~~~ (not an official CPE)