CVE-2021-39891 log

Severity Medium
Remote Yes
Type Information disclosure
In all versions of GitLab CE/EE since version 8.0, access tokens created as part of admin's impersonation of a user are not cleared at the end of impersonation which may lead to unnecessary sensitive info disclosure.
Group Package Affected Fixed Severity Status Ticket
AVG-2431 gitlab 14.3.0-1 14.3.1-1 High Fixed