CVE-2021-22213 log

Severity High
Remote Yes
Type Information disclosure
A cross-site leak vulnerability in the OAuth flow of all versions of GitLab CE/EE since 7.10 before 13.12.2 allowed an attacker to leak an OAuth access token by getting the victim to visit a malicious page with Safari.
Group Package Affected Fixed Severity Status Ticket
AVG-2023 gitlab 13.11.3-1 13.12.2-1 High Fixed
Date Advisory Group Package Severity Type
09 Jun 2021 ASA-202106-21 AVG-2023 gitlab High multiple issues