Published: 10 March 2020
An issue was discovered in GitLab Enterprise Edition 10.6 through 12.0.2. The GitHub project integration was vulnerable to an SSRF vulnerability which allowed an attacker to make requests to local network resources. It has Incorrect Access Control.
CVSS 3 base score: 7.5
Affects GitLab EE 10.6 and later.