When importing repos via URL, one time use git credentials were persisted beyond the expected time window in Gitaly 1.79.0 or above. Rated low severity (CVSS 3.2), this vulnerability is low attack complexity. No vendor patch available.
Information Disclosure
Gitaly
NVD
CVSS 3.1
3.2
EPSS
0.3%