2019-09-09 22:15:12 2019-09-10 21:46:42

An issue was discovered in GitLab Enterprise Edition before 11.5.8, 11.6.x before 11.6.6, and 11.7.x before 11.7.1. The Jira integration feature is vulnerable to an unauthenticated blind SSRF issue.

Vector

NETWORK

Complexity

MEDIUM

Authentication

NONE

Confidentiality

PARTIAL

Integrity

PARTIAL

Availability

PARTIAL
Gitlab Gitlab 10.0.0 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.0.1 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.0.2 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.0.3 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.0.4 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.0.5 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.0.7 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.1.0 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.1.1 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.1.2 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.1.3 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.1.4 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.1.5 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.1.6 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.1.7 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.2.0 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.2.1 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.2.2 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.2.3 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.2.4 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.2.5 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.2.6 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.2.7 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.2.8 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.3.0 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.3.1 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.3.2 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.3.3 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.3.4 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.3.5 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.3.6 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.3.7 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.3.8 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.3.9 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.4.0 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.4.1 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.4.2 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.4.3 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.4.4 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.4.5 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.4.6 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.4.7 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.5.0 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.5.1 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.5.2 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.5.3 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.5.4 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.5.5 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.5.6 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.5.7 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.5.8 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.6.0 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.6.1 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.6.2 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.6.3 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.6.4 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.6.5 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.6.6 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.7.0 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.7.1 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.7.2 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.7.3 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.7.4 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.7.5 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.7.6 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.7.7 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.8.0 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.8.1 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.8.2 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.8.3 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.8.4 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.8.5 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.8.6 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 10.8.7 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.0.0 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.0.1 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.0.2 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.0.3 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.0.4 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.0.5 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.0.6 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.1.0 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.1.1 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.1.2 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.1.3 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.1.4 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.1.5 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.1.6 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.1.7 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.1.8 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.2.0 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.2.1 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.2.2 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.2.3 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.2.4 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.2.5 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.2.6 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.2.7 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.2.8 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.3.0 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.3.1 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.3.2 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.3.3 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.3.4 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.3.5 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.3.6 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.3.7 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.3.8 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.3.9 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.3.10 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.3.11 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.3.12 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.3.13 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.3.14 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.4.0 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.4.1 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.4.2 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.4.3 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.4.4 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.4.5 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.4.6 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.4.7 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.4.8 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.4.9 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.4.10 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.4.11 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.4.12 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.4.13 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.4.14 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.5.0 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.5.0 - ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.5.0 Rc1 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.5.0 Rc10 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.5.0 Rc11 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.5.0 Rc12 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.5.0 Rc13 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.5.0 Rc2 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.5.0 Rc3 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.5.0 Rc4 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.5.0 Rc5 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.5.0 Rc6 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.5.0 Rc7 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.5.0 Rc8 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.5.0 Rc9 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.5.1 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.5.2 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.5.3 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.5.5 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.6.0 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.6.1 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.6.2 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.6.3 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.6.4 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.6.5 ~~enterprise~~~ (not an official CPE) Gitlab Gitlab 11.7.0 ~~enterprise~~~ (not an official CPE)