CVE-2020-13309

Опубликовано: 14 сент. 2020

Источник: debian

EPSS Низкий

Описание

A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4. GitLab was vulnerable to a blind SSRF attack through the repository mirroring feature.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
gitlab	fixed	13.2.8-1		package

Примечания

https://about.gitlab.com/releases/2020/09/02/security-release-gitlab-13-3-3-released/

EPSS

Процентиль: 46%

0.00233

Низкий

Связанные уязвимости

CVE-2020-13309

CVSS3: 5.4

ubuntu

больше 5 лет назад

A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4. GitLab was vulnerable to a blind SSRF attack through the repository mirroring feature.

CVE-2020-13309

CVSS3: 5.4

nvd

больше 5 лет назад

A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4. GitLab was vulnerable to a blind SSRF attack through the repository mirroring feature.

GHSA-f435-r8xf-rc9w

github

больше 3 лет назад

A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4. GitLab was vulnerable to a blind SSRF attack through the repository mirroring feature.

EPSS

Процентиль: 46%

0.00233

Низкий