CVE-2020-13343

Опубликовано: 06 окт. 2020

Источник: nvd

CVSS3: 7.5

CVSS3: 8.8

CVSS2: 4

EPSS Низкий

Описание

An issue has been discovered in GitLab affecting all versions starting from 11.2. Unauthorized Users Can View Custom Project Template

Ссылки

https://gitlab.com/gitlab-org/cves/-/blob/master/2020/CVE-2020-13343.json
Third Party Advisory
https://gitlab.com/gitlab-org/gitlab/-/issues/14861
Broken Link
https://hackerone.com/reports/689314
Exploit
Third Party Advisory
https://gitlab.com/gitlab-org/cves/-/blob/master/2020/CVE-2020-13343.json
Third Party Advisory
https://gitlab.com/gitlab-org/gitlab/-/issues/14861
Broken Link
https://hackerone.com/reports/689314
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*

Версия от 11.2.0 (включая) до 13.4.3 (включая)

cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*

Версия от 11.2.0 (включая) до 13.4.3 (включая)

EPSS

Процентиль: 34%

0.00137

Низкий

7.5 High

CVSS3

8.8 High

CVSS3

4 Medium

CVSS2

Дефекты

CWE-668

Связанные уязвимости

CVE-2020-13343

CVSS3: 7.5

ubuntu

больше 5 лет назад

An issue has been discovered in GitLab affecting all versions starting from 11.2. Unauthorized Users Can View Custom Project Template

CVE-2020-13343

CVSS3: 7.5

debian

больше 5 лет назад

An issue has been discovered in GitLab affecting all versions starting ...

GHSA-5x78-2px4-46jf

github

больше 3 лет назад

An issue has been discovered in GitLab affecting all versions starting from 11.2. Unauthorized Users Can View Custom Project Template

EPSS

Процентиль: 34%

0.00137

Низкий

7.5 High

CVSS3

8.8 High

CVSS3

4 Medium

CVSS2

Дефекты

CWE-668