Published: 09/09/2019 Updated: 24/08/2020

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9

VMScore: 446

Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

An issue exists in GitLab Community and Enterprise Edition prior to 11.5.8, 11.6.x prior to 11.6.6, and 11.7.x prior to 11.7.1. It allows Information Disclosure (issue 3 of 6). For installations using GitHub or Bitbucket OAuth integrations, it is possible to use a covert redirect to obtain the user OAuth token for those services.

Vulnerable Product	Search on Vulmon	Subscribe to Product
gitlab gitlab

Debian Bug report logs - #921059 gitlab: CVE-2019-6781 CVE-2019-6782 CVE-2019-6783 CVE-2019-6784 CVE-2019-6785 CVE-2019-6786 CVE-2019-6787 CVE-2019-6788 CVE-2019-6789 CVE-2019-6790 CVE-2019-6791 CVE-2019-6792 CVE-2019-6794 CVE-2019-6795 CVE-2019-6796 CVE-2019-6960 CVE-2019-6995 CVE-2019-6997 CVE-2019-7155 CVE-2019-7176 Package: src:gitlab ...

qemu vulnerablity.

Real World produce CVE-2019-6788 (about slirp handle TCP/IP heap overflow) CVE-2020-14364 (USB core out of bounds read and write) TianfuCup2020-QEMU-Error-Handling-Bug (nvme device uninitialized variable and uninitialized free) vitio-260 (null pointer reference) vga-260 (out of bounds read and write) pcnet-220 (out of bounds read and write) Document Device Specific

skr_learn_list

这是什么？这是一份skr_university的学习清单，因为太菜被抓，努力学习的一份记录 skr_learn_list 前面因为年代久远，就以周为单位，后面再以日为单位第一周（2020518-2020523）：Prime c++和stl源码剖析（视频+代码） Prime c++：第一章到第六章前面和prime c没什么太大的区别，就暂且不进行

NVD-CWE-noinfo https://about.gitlab.com/2019/01/31/security-release-gitlab-11-dot-7-dot-3-released/https://gitlab.com/gitlab-org/gitlab-ce/issues/56663 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=921059 https://nvd.nist.gov https://github.com/V1NKe/learning-qemu

CVE-2019-6788

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

Github Repositories

References

Vulmon Search

About

Products

Connect