Information disclosure vulnerability in GitLab EE - CVE-2022-2281 (rpm)ID: oval:org.secpod.oval:def:84691 | Date: (C)2022-10-04 (M)2023-08-03 |
Class: VULNERABILITY | Family: unix |
The host is installed with GitLab CE/EE 12.5 before 14.10.5, 15.0 before 15.0.4 or 15.1 before 15.1.1 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to properly handle issues in unspecified vectors. Successful exploitation could allows disclosure of release titles if group milestones are associated with any project releases.