Unrated severityNVD Advisory· Published Apr 15, 2023· Updated Feb 6, 2025
CVE-2019-14944
CVE-2019-14944
Description
An issue was discovered in GitLab Community and Enterprise Edition before 11.11.8, 12 before 12.0.6, and 12.1 before 12.1.6. Gitaly allows injection of command-line flags. This sometimes leads to privilege escalation or remote code execution.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
7- GitLab/GitLab Community and Enterprise Editiondescription
- Range: <=11.11.7, >=12.0.0 <=12.0.5, >=12.1.0 <=12.1.5
- Range: <=11.11.7, >=12.0.0 <=12.0.5, >=12.1.0 <=12.1.5
- osv-coords4 versionspkg:apk/chainguard/gitlab-operatorpkg:apk/chainguard/gitlab-operator-chartspkg:apk/chainguard/gitlab-operator-compatpkg:apk/chainguard/gitlab-operator-fips
< 0+ 3 more
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.