---

CVE-2021-39911 - log back

CVE-2021-39911 edited at 28 Oct 2021 15:14:10
Severity	- Unknown + Low
Remote	- Unknown + Remote
Type	- Unknown + Information disclosure
Description	+ An improper access control flaw in GitLab CE/EE since version 13.9 exposes private email address of Issue and Merge Requests assignee to Webhook data consumers.
References	+ https://about.gitlab.com/releases/2021/10/28/security-release-gitlab-14-4-1-released/

CVE-2021-39911 created at 28 Oct 2021 15:08:24