CVE-2023-3102
CVSS Score of 10 (low)
Details
Summary
CVE-2023-3102 is a vulnerability in GitLab EE that affects all versions starting from 16.0 before 16.0.6 and all versions starting from 16.1 before 16.1.1. The vulnerability allows access to titles of private issue and MR, resulting in a sensitive information leak issue. The base severity of this vulnerability is medium and the base score is 5.3 according to both [email protected] and [email protected]. It has a CVSS score of 3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N, indicating a low impact on confidentiality but no impact on integrity or availability. There have been 89 reported instances of this vulnerability so far, and it falls under CWE-200 (Information Exposure). No further analysis or remediation steps are provided in the available information.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Advisories, Assessments, and Mitigations
Prioritize, Pinpoint, and Act to Prevent Vulnerability Exploits with Recorded Future
- Gain complete coverage of your cyber, third party, and physical attack surface
- Proactively mitigate threats before they turn into costly attacks
- Make fast, effective, data-driven decisions