Unrated severityNVD Advisory· Published Mar 28, 2022· Updated Aug 2, 2024
CVE-2022-0371
CVE-2022-0371
Description
An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.4 before 14.5.4, all versions starting from 14.6 before 14.6.4, all versions starting from 14.7 before 14.7.1. GitLab search may allow authenticated users to search other users by their respective private emails even if a user set their email to private.
Affected products
3>=11.4,<14.5.4; >=14.6,<14.6.4; >=14.7,<14.7.1+ 1 more
- (no CPE)range: >=11.4,<14.5.4; >=14.6,<14.6.4; >=14.7,<14.7.1
- (no CPE)range: >=14.7, <14.7.1
Patches
Vulnerability mechanics
References
2- gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0371.jsonmitrex_refsource_CONFIRM
- gitlab.com/gitlab-org/gitlab/-/issues/350476mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.