GHSA-x8mp-jv75-5hrp

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

Описание

A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4. GitLab was not validating a Deploy-Token and allowed a disabled repository be accessible via a git command line.

Ссылки

EPSS

Процентиль: 37%

0.00152

Низкий

CVE ID

CVE-2020-13316

Дефекты

CWE-862

Связанные уязвимости

CVE-2020-13316

CVSS3: 5.4

ubuntu

почти 5 лет назад

A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4. GitLab was not validating a Deploy-Token and allowed a disabled repository be accessible via a git command line.

CVE-2020-13316

CVSS3: 5.4

nvd

почти 5 лет назад

A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4. GitLab was not validating a Deploy-Token and allowed a disabled repository be accessible via a git command line.

CVE-2020-13316

CVSS3: 5.4

debian

почти 5 лет назад

A vulnerability was discovered in GitLab versions before 13.1.10, 13.2 ...

EPSS

Процентиль: 37%

0.00152

Низкий

CVE ID

CVE-2020-13316

Дефекты

CWE-862