Missing filtering in an error message in GitLab CE/EE...
Moderate severity
Unreviewed
Published
Apr 5, 2022
to the GitHub Advisory Database
•
Updated Jan 27, 2023
Description
Published by the National Vulnerability Database
Apr 4, 2022
Published to the GitHub Advisory Database
Apr 5, 2022
Last updated
Jan 27, 2023
Missing filtering in an error message in GitLab CE/EE affecting all versions prior to 14.7.7, 14.8 prior to 14.8.5, and 14.9 prior to 14.9.2 exposed sensitive information when an include directive fails in the CI/CD configuration.
References