An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.7.9 before 13.8.7, all versions starting from 13.9 before 13.9.5, and all versions starting from 13.10 before 13.10.1. A specially crafted Wiki page allowed attackers to read arbitrary files on the server.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: GitLab
Published: 2021-04-02T16:16:15
Updated: 2024-08-03T18:37:17.326Z
Reserved: 2021-01-05T00:00:00
Link: CVE-2021-22203
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2021-04-02T17:15:13.083
Modified: 2022-07-22T12:14:46.430
Link: CVE-2021-22203
Redhat
No data.