NuytsTech Security

CVE-2021-39911

by ·

An improper access control flaw in GitLab CE/EE since version 13.9 exposes private email address of Issue and Merge Requests assignee to Webhook data consumers

Date published : 2021-11-04

https://gitlab.com/gitlab-org/cves/-/blob/master/2021/CVE-2021-39911.json

https://gitlab.com/gitlab-org/gitlab/-/issues/297470

Tags: