CVE-2020-13272

Опубликовано: 19 июн. 2020

Источник: debian

Описание

OAuth flow missing verification checks CE/EE 12.3 and later through 13.0.1 allows unverified user to use OAuth authorization code flow

Пакет	Статус	Версия исправления	Релиз	Тип
gitlab	not-affected			package

CVE-2020-13272

CVSS3: 7.5

ubuntu

больше 5 лет назад

OAuth flow missing verification checks CE/EE 12.3 and later through 13.0.1 allows unverified user to use OAuth authorization code flow

CVE-2020-13272

CVSS3: 7.5

nvd

больше 5 лет назад

OAuth flow missing verification checks CE/EE 12.3 and later through 13.0.1 allows unverified user to use OAuth authorization code flow

GHSA-jmw9-579m-cw2x

github

больше 3 лет назад

OAuth flow missing verification checks CE/EE 12.3 and later through 13.0.1 allows unverified user to use OAuth authorization code flow