CVE-2023-2190

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Jul 13, 2023

Updated: Jul 20, 2023

Summary

CVE-2023-2190 is a vulnerability affecting GitLab CE/EE versions 13.10 before 15.11.10, 16.0 before 16.0.6, and 16.1 before 16.1.1. This issue allows users to potentially view new commits to private projects in a fork created while the project was public. This security flaw may pose a risk to confidential information and privacy. Users are advised to update to the latest patched versions as soon as possible to mitigate this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Oracle Siebel

Affected Vendors

BonqDAO

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/q4lDl_
https://www.cve.org/CVERecord?id=CVE-2023-2190
https://nvd.nist.gov/vuln/detail/CVE-2023-2190

Back to Vulnerability Database