CVE-2021-22258

Summary

The project import/export feature in GitLab 8.9 and greater could be used to obtain otherwise private email addresses

Affected Software

VendorProductVersion RangeStatus
GitLabGitLab>=14.2, <14.2.2affected
GitLabGitLab>=14.1, <14.1.4affected
GitLabGitLab>=8.9, <14.0.9affected

Weaknesses

  • Information exposure in GitLab

ADP Enrichment

CVE Program Container

Additional References

References