CVE-2018-18641 log

Severity Low
Remote Yes
Type Information disclosure
A security issue has been found in gitlab versions prior to 11.4.3, where personal access tokens were being stored unencrypted as plain text in the database which could result in attackers potentially reading them via SQL injection or other database leaks.
Group Package Affected Fixed Severity Status Ticket
AVG-794 gitlab 11.4.0-1 11.4.3-1 Critical Fixed
Date Advisory Group Package Severity Type
31 Oct 2018 ASA-201810-16 AVG-794 gitlab Critical multiple issues