CVE-2020-13346

Опубликовано: 07 окт. 2020

Источник: debian

EPSS Низкий

Описание

Membership changes are not reflected in ToDo subscriptions in GitLab versions prior to 13.2.10, 13.3.7 and 13.4.2, allowing guest users to access confidential issues through API.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
gitlab	fixed	13.2.10-1		package

EPSS

Процентиль: 32%

0.00127

Низкий

Связанные уязвимости

CVE-2020-13346

CVSS3: 6.5

ubuntu

больше 5 лет назад

Membership changes are not reflected in ToDo subscriptions in GitLab versions prior to 13.2.10, 13.3.7 and 13.4.2, allowing guest users to access confidential issues through API.

CVE-2020-13346

CVSS3: 6.5

nvd

больше 5 лет назад

Membership changes are not reflected in ToDo subscriptions in GitLab versions prior to 13.2.10, 13.3.7 and 13.4.2, allowing guest users to access confidential issues through API.

GHSA-8wmm-qgmm-95gm

github

почти 4 года назад

Membership changes are not reflected in ToDo subscriptions in GitLab versions prior to 13.2.10, 13.3.7 and 13.4.2, allowing guest users to access confidential issues through API.

EPSS

Процентиль: 32%

0.00127

Низкий