Unrated severityNVD Advisory· Published Sep 16, 2019· Updated Aug 5, 2024
CVE-2019-15728
CVE-2019-15728
Description
An issue was discovered in GitLab Community and Enterprise Edition 10.1 through 12.2.1. Protections against SSRF attacks on the Kubernetes integration are insufficient, which could have allowed an attacker to request any local network resource accessible from the GitLab server.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- GitLab/Community and Enterprise Editiondescription
- Range: >= 10.1, <= 12.2.1
- Range: >= 10.1, <= 12.2.1
Patches
Vulnerability mechanics
References
2- about.gitlab.com/2019/08/29/security-release-gitlab-12-dot-2-dot-3-released/mitrex_refsource_MISC
- gitlab.com/gitlab-org/gitlab-ce/issues/61314mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.