{ "affected": [ { "ranges": [ { "database_specific": { "versions": [ { "introduced": "12.3.0" }, { "fixed": "12.3.8" }, { "introduced": "12.4.0" }, { "fixed": "12.4.5" }, { "introduced": "12.5.0" }, { "fixed": "12.5.2" } ] }, "events": [ { "introduced": "c5ab21eda575676ffc46b85cab3456473c0357c6" }, { "fixed": "5b6250ce868e5e25ff15d67f9002c357ae4f5b17" }, { "introduced": "572e09f5e8fcd54b0366836668e6685da68de22f" }, { "fixed": "4025dea89989ebe3bb6dcc8d5d9ddf9015cd868f" }, { "introduced": "4878f9ac8941c5ad124c9f2216897109c5dde4af" }, { "fixed": "c1b3929bc67011d623bb8c521afe4cf3c6fed4bb" } ], "repo": "https://gitlab.com/gitlab-org/gitlab", "type": "GIT" } ] } ], "details": "GitLab EE 12.3 through 12.5, 12.4.3, and 12.3.6 allows Denial of Service. Certain characters were making it impossible to create, edit, or view issues and commits.", "id": "CVE-2019-19313", "modified": "2026-04-01T23:09:30.518598993Z", "published": "2020-01-05T22:15:11.033Z", "references": [ { "type": "ADVISORY", "url": "https://about.gitlab.com/blog/categories/releases/" }, { "type": "ADVISORY", "url": "https://about.gitlab.com/blog/2019/11/27/security-release-gitlab-12-5-1-released/" }, { "type": "REPORT", "url": "https://gitlab.com/gitlab-org/gitlab/issues/14947" } ], "severity": [ { "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "type": "CVSS_V3" } ] }