The host is installed with GitLab CE/EE 12.4 before 14.10.5, 15.0 before 15.0.4 or 15.1 before 15.1.1 and is prone to an incorrect default permissions vulnerability. A flaw is present in the application, which fails to properly handle issues in unspecified vectors. On successful exploitation, GitLab was leaking Conan packages names due to incorrect permissions verification.