VDB
CVE-2024-10043
CVE-2024-10043
PUBLISHED
An issue has been discovered in GitLab EE affecting all versions starting from 14.3 before 17.4.6, all versions starting from 17.5 before 17.5.4 all versions starting from 17.6 before 17.6.2, that allows group users to view confidential incident title through the Wiki History Diff feature, potentially leading to information disclosure.
EPSS 0.26% · 50.1th percentile
Risk Scores
EPSS Score
0.26%
50.1th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Bitnami | gitlab | 14.3.0, 17.5.0, 17.6.0 |
| Bitnami | gitlab | 14.3.0, 17.5.0, 17.6.0 |
Timeline
- Jan 21, 1970 Security Advisory
- Dec 10, 2024 CVE Published
- Dec 11, 2024 PoC Published
- Dec 13, 2024 EPSS Score
- Dec 30, 2024 EPSS Score
- Jan 15, 2025 EPSS Score
- Feb 1, 2025 EPSS Score
- Feb 18, 2025 EPSS Score
- Mar 6, 2025 EPSS Score
- Mar 23, 2025 EPSS Score
- Apr 9, 2025 EPSS Score
- Apr 9, 2025 Coalition ESS Score