CVE-2017-0918
Description
Gitlab Community Edition version 10.3 is vulnerable to a path traversal issue in the GitLab CI runner component resulting in remote code execution.

gitlab
NPMFull NodeJS implementation of the GitLab API. Supports Promises, Async/Await. >= 8.4.0, <= 9.5.10, >= 10.0.0, <= 10.1.5, >= 10.0.0, <= 10.1.15, >= 10.2.0, <= 10.2.5, > 10.2.0, <= 10.2.5, >= 10.3.0, <= 10.3.3, > 10.3.0, <= 10.3.3NVD

>= 8.4.0, <= 9.5.10, >= 10.0.0, <= 10.1.5, >= 10.0.0, <= 10.1.15, >= 10.2.0, <= 10.2.5, > 10.2.0, <= 10.2.5, >= 10.3.0, <= 10.3.3, > 10.3.0, <= 10.3.3NVD