GitLab Vulnerability: Temporary Read Access to Private Repository via Incorrect Headers

GitLab Vulnerability: Temporary Read Access to Private Repository via Incorrect Headers

CVE-2021-22167 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

An issue has been discovered in GitLab affecting all versions starting from 12.1. Incorrect headers in specific project page allows attacker to have a temporary read access to the private repository

Learn more about our Web Application Penetration Testing UK.