Unauthorized Access to Sensitive Information via NuGet in GitLab EE 12.8 and later

Unauthorized Access to Sensitive Information via NuGet in GitLab EE 12.8 and later

CVE-2020-12448 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

GitLab EE 12.8 and later allows Exposure of Sensitive Information to an Unauthorized Actor via NuGet.

Learn more about our Web Application Penetration Testing UK.