An information leak vulnerability exists in Gerrit versions prior to 2.14.22, 2.15.21, 2.16.25, 3.0.15, 3.1.10, 3.2.5 where an overoptimization with the FilteredRepository wrapper skips the verification of access on All-Users repositories, allowing an attacker to get read access to all users' personal information associated with their accounts.
| Package (Ecosystem) | Introduced | Fixed | Limit |
|---|---|---|---|
| com.google.gerrit:gerrit-plugin-api(Maven) | 0 | 2.14.22 | N/A |
| com.google.gerrit:gerrit-plugin-api(Maven) | 2.15.0 | 2.15.21 | N/A |
| com.google.gerrit:gerrit-plugin-api(Maven) | 2.16.0 | 2.16.25 | N/A |
| com.google.gerrit:gerrit-plugin-api(Maven) | 3.0.0 | 3.0.15 | N/A |
| com.google.gerrit:gerrit-plugin-api(Maven) | 3.1.0 | 3.1.10 | N/A |
| com.google.gerrit:gerrit-plugin-api(Maven) | 3.2.0 | 3.2.5 | N/A |
CVSS Metrics
