CVE-2020-13272

Опубликовано: 19 июн. 2020

Источник: debian

EPSS Низкий

Описание

OAuth flow missing verification checks CE/EE 12.3 and later through 13.0.1 allows unverified user to use OAuth authorization code flow

Пакет	Статус	Версия исправления	Релиз	Тип
gitlab	not-affected			package

EPSS

Процентиль: 32%

0.00126

Низкий

CVE-2020-13272

CVSS3: 7.5

ubuntu

почти 6 лет назад

OAuth flow missing verification checks CE/EE 12.3 and later through 13.0.1 allows unverified user to use OAuth authorization code flow

CVE-2020-13272

CVSS3: 7.5

nvd

почти 6 лет назад

OAuth flow missing verification checks CE/EE 12.3 and later through 13.0.1 allows unverified user to use OAuth authorization code flow

GHSA-jmw9-579m-cw2x

github

почти 4 года назад

OAuth flow missing verification checks CE/EE 12.3 and later through 13.0.1 allows unverified user to use OAuth authorization code flow

EPSS

Процентиль: 32%

0.00126

Низкий