DescriptionAn issue was discovered in GitLab Community and Enterprise Edition 10.1 through 12.2.1. Protections against SSRF attacks on the Kubernetes integration are insufficient, which could have allowed an attacker to request any local network resource accessible from the GitLab server.
Overall state of this security issue: Does not affect SUSE products
This issue is currently rated as having moderate severity.
|National Vulnerability Database
SUSE Timeline for this CVECVE page created: Tue Sep 10 08:39:09 2019
CVE page last modified: Fri Oct 7 12:50:11 2022