CVE-2020-13346

Опубликовано: 07 окт. 2020

Источник: debian

Описание

Membership changes are not reflected in ToDo subscriptions in GitLab versions prior to 13.2.10, 13.3.7 and 13.4.2, allowing guest users to access confidential issues through API.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
gitlab	fixed	13.2.10-1		package

Связанные уязвимости

CVE-2020-13346

CVSS3: 6.5

ubuntu

больше 5 лет назад

Membership changes are not reflected in ToDo subscriptions in GitLab versions prior to 13.2.10, 13.3.7 and 13.4.2, allowing guest users to access confidential issues through API.

CVE-2020-13346

CVSS3: 6.5

nvd

больше 5 лет назад

Membership changes are not reflected in ToDo subscriptions in GitLab versions prior to 13.2.10, 13.3.7 and 13.4.2, allowing guest users to access confidential issues through API.

GHSA-8wmm-qgmm-95gm

github

больше 3 лет назад

Membership changes are not reflected in ToDo subscriptions in GitLab versions prior to 13.2.10, 13.3.7 and 13.4.2, allowing guest users to access confidential issues through API.