What is the authoritative source for CVE-2021-39913?

CVE-2021-39913 (CVE-2021-39913) is catalogued in NVD + CISA KEV + FIRST EPSS and curated for EU compliance use cases by SQUR.

CVE-2021-39913EPSS p19.5%

CVE-2021-39913CVE-2021-39913

gitlab / gitlab

Description

Accidental logging of system root password in the migration log in all versions of GitLab CE/EE before 14.2.6, all versions starting from 14.3 before 14.3.4, and all versions starting from 14.4 before 14.4.1 allows an attacker with local file system access to obtain system root-level privileges

Scoring

CVSS	4.4 ()
Vector	CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
EPSS	0.28% probability of exploitation · percentile 19.5% · 2026-06-18T12:00:27Z
Last modified	2026-06-12

Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.