{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-19T16:44:25.753","vulnerabilities":[{"cve":{"id":"CVE-2024-12380","sourceIdentifier":"cve@gitlab.com","published":"2025-03-13T06:15:35.220","lastModified":"2025-08-06T18:33:59.747","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"An issue was discovered in GitLab EE/CE affecting all versions starting from 11.5 before 17.7.7, all versions starting from 17.8 before 17.8.5, all versions starting from 17.9 before 17.9.2. Certain user inputs in repository mirroring settings could potentially expose sensitive authentication information."},{"lang":"es","value":"Se detectó un problema en GitLab EE/CE que afectaba a todas las versiones (desde la 11.5 hasta la 17.7.7), a todas las versiones (desde la 17.8 hasta la 17.8.5) y a todas las versiones (desde la 17.9 hasta la 17.9.2). Ciertas entradas de usuario en la configuración de duplicación del repositorio podrían exponer información confidencial de autenticación."}],"metrics":{"cvssMetricV31":[{"source":"cve@gitlab.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N","baseScore":4.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":0.7,"impactScore":3.6},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"cve@gitlab.com","type":"Secondary","description":[{"lang":"en","value":"CWE-209"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*","versionStartIncluding":"11.5.0","versionEndExcluding":"17.7.7","matchCriteriaId":"B6900812-E6F7-47EC-8144-F7B9048AC020"},{"vulnerable":true,"criteria":"cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*","versionStartIncluding":"11.5.0","versionEndExcluding":"17.7.7","matchCriteriaId":"E98F669E-4F7D-4C2C-A8D4-3733746B6C92"},{"vulnerable":true,"criteria":"cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*","versionStartIncluding":"17.8.0","versionEndExcluding":"17.8.5","matchCriteriaId":"51278A1A-6BB1-461B-B4D0-38FD58680C3F"},{"vulnerable":true,"criteria":"cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*","versionStartIncluding":"17.8.0","versionEndExcluding":"17.8.5","matchCriteriaId":"9793DFF7-AA7F-4727-91EE-A05FB4B63D5A"},{"vulnerable":true,"criteria":"cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*","versionStartIncluding":"17.9.0","versionEndExcluding":"17.9.2","matchCriteriaId":"257CE2B6-A495-4F46-990B-BF5D283530DA"},{"vulnerable":true,"criteria":"cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*","versionStartIncluding":"17.9.0","versionEndExcluding":"17.9.2","matchCriteriaId":"6373756D-2959-4F3C-AFBA-33BB55570428"}]}]}],"references":[{"url":"https://gitlab.com/gitlab-org/gitlab/-/issues/508557","source":"cve@gitlab.com","tags":["Broken Link"]},{"url":"https://hackerone.com/reports/2868951","source":"cve@gitlab.com","tags":["Permissions Required"]}]}}]}