Insufficiently Protected Credential Issue in Gitlab Enterprise Edition 10.1.0: Information Disclosure of Plaintext Password

Insufficiently Protected Credential Issue in Gitlab Enterprise Edition 10.1.0: Information Disclosure of Plaintext Password

CVE-2017-0925 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:N/A:N

Gitlab Enterprise Edition version 10.1.0 is vulnerable to an insufficiently protected credential issue in the project service integration API endpoint resulting in an information disclosure of plaintext password.

Learn more about our Api Penetration Testing.